Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/1078815?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/1078815?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.21-3%2Bsqueeze1", "type": "deb", "namespace": "debian", "name": "libsndfile", "version": "1.0.21-3+squeeze1", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "1.2.2-2+deb13u1", "latest_non_vulnerable_version": "1.2.2-2+deb13u1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4060?format=api", "vulnerability_id": "VCID-13kh-3cqw-f7dv", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8362.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01328", "scoring_system": "epss", "scoring_elements": "0.80415", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01328", "scoring_system": "epss", "scoring_elements": "0.80345", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01328", "scoring_system": "epss", "scoring_elements": "0.80406", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01328", "scoring_system": "epss", "scoring_elements": "0.80422", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449519", "reference_id": "1449519", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449519" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862204", "reference_id": "862204", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862204" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/201811-23", "reference_id": "GLSA-201811-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-23" }, { "reference_url": "https://usn.ubuntu.com/3306-1/", "reference_id": "USN-3306-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3306-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2017-8362" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-13kh-3cqw-f7dv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/178910?format=api", "vulnerability_id": "VCID-31yx-1x8c-gfam", "summary": "Multiple vulnerabilities have been found in libsndfile, the worst\n of which might allow remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7805.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7805.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7805", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.58549", "scoring_system": "epss", "scoring_elements": "0.98244", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.58549", "scoring_system": "epss", "scoring_elements": "0.98251", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.58549", "scoring_system": "epss", "scoring_elements": "0.98252", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-7805" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7805", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7805" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277897", "reference_id": "1277897", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277897" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804445", "reference_id": "804445", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804445" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/38447.pl", "reference_id": "CVE-2015-7805;OSVDB-128868", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/38447.pl" }, { "reference_url": "https://security.gentoo.org/glsa/201612-03", "reference_id": "GLSA-201612-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201612-03" }, { "reference_url": "https://usn.ubuntu.com/2832-1/", "reference_id": "USN-2832-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2832-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2015-7805" ], "risk_score": 1.0, "exploitability": "2.0", "weighted_severity": "0.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-31yx-1x8c-gfam" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/272?format=api", "vulnerability_id": "VCID-3tvj-x7py-bkc2", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9756.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9756.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9756", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00662", "scoring_system": "epss", "scoring_elements": "0.71632", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00662", "scoring_system": "epss", "scoring_elements": "0.71718", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00662", "scoring_system": "epss", "scoring_elements": "0.71731", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00662", "scoring_system": "epss", "scoring_elements": "0.71729", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9756" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1177254", "reference_id": "1177254", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1177254" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804447", "reference_id": "804447", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804447" }, { "reference_url": "https://usn.ubuntu.com/2832-1/", "reference_id": "USN-2832-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2832-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2014-9756" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3tvj-x7py-bkc2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3154?format=api", "vulnerability_id": "VCID-51dk-kwjz-33h8", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16942.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16942.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16942", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35561", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.3574", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.3576", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35744", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16942" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1517902", "reference_id": "1517902", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1517902" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2017-16942" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-51dk-kwjz-33h8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2912?format=api", "vulnerability_id": "VCID-6brm-dp9v-mygx", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14245.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14245.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14245", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.63001", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62891", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62993", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.63005", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14245" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14245", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14245" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500006", "reference_id": "1500006", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500006" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876682", "reference_id": "876682", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876682" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/202007-65", "reference_id": "GLSA-202007-65", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202007-65" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2017-14245" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6brm-dp9v-mygx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/179609?format=api", "vulnerability_id": "VCID-74wv-8fuc-6ua9", "summary": "Multiple vulnerabilities have been found in libsndfile, the worst\n of which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3832.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3832.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3832", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14704", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14825", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14824", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14794", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3832" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3832", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3832" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1677216", "reference_id": "1677216", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1677216" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922372", "reference_id": "922372", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922372" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/202007-65", "reference_id": "GLSA-202007-65", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202007-65" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2019-3832" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-74wv-8fuc-6ua9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/21436?format=api", "vulnerability_id": "VCID-ayu4-2xeb-mqgp", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50612.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50612.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-50612", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.0613", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06131", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06152", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06144", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-50612" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50612", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50612" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/libsndfile/libsndfile/issues/1035", "reference_id": "1035", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-30T18:57:26Z/" } ], "url": "https://github.com/libsndfile/libsndfile/issues/1035" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088692", "reference_id": "1088692", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1088692" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322057", "reference_id": "2322057", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322057" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:11172", "reference_id": "RHSA-2024:11172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:11172" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:11192", "reference_id": "RHSA-2024:11192", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:11192" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:11237", "reference_id": "RHSA-2024:11237", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:11237" }, { "reference_url": "https://usn.ubuntu.com/7267-1/", "reference_id": "USN-7267-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7267-1/" }, { "reference_url": "https://usn.ubuntu.com/7267-2/", "reference_id": "USN-7267-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7267-2/" }, { "reference_url": "https://usn.ubuntu.com/7273-1/", "reference_id": "USN-7273-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7273-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1074822?format=api", "purl": "pkg:deb/debian/libsndfile@1.2.0-1%2Bdeb12u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8hud-r6g5-5bhj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.2.0-1%252Bdeb12u1" } ], "aliases": [ "CVE-2024-50612" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ayu4-2xeb-mqgp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9523?format=api", "vulnerability_id": "VCID-eky9-zq9s-jkaa", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3246.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3246.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3246", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00806", "scoring_system": "epss", "scoring_elements": "0.74674", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00806", "scoring_system": "epss", "scoring_elements": "0.74591", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00806", "scoring_system": "epss", "scoring_elements": "0.74662", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00806", "scoring_system": "epss", "scoring_elements": "0.74676", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3246" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3246", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3246" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1984319", "reference_id": "1984319", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1984319" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991496", "reference_id": "991496", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991496" }, { "reference_url": "https://security.archlinux.org/AVG-2185", "reference_id": "AVG-2185", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2185" }, { "reference_url": "https://security.archlinux.org/AVG-2186", "reference_id": "AVG-2186", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2186" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3246", "reference_id": "CVE-2021-3246", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3246" }, { "reference_url": "https://security.gentoo.org/glsa/202309-11", "reference_id": "GLSA-202309-11", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202309-11" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3253", "reference_id": "RHSA-2021:3253", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3253" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3295", "reference_id": "RHSA-2021:3295", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3295" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3297", "reference_id": "RHSA-2021:3297", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3297" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3298", "reference_id": "RHSA-2021:3298", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3298" }, { "reference_url": "https://usn.ubuntu.com/5025-1/", "reference_id": "USN-5025-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5025-1/" }, { "reference_url": "https://usn.ubuntu.com/5025-2/", "reference_id": "USN-5025-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5025-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1084167?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.31-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.31-2" } ], "aliases": [ "CVE-2021-3246" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eky9-zq9s-jkaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4706?format=api", "vulnerability_id": "VCID-epv5-9g1z-8ubq", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-13139.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-13139.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-13139", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01795", "scoring_system": "epss", "scoring_elements": "0.83241", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01795", "scoring_system": "epss", "scoring_elements": "0.83175", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01795", "scoring_system": "epss", "scoring_elements": "0.83236", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01795", "scoring_system": "epss", "scoring_elements": "0.83244", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-13139" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-13139", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-13139" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1598480", "reference_id": "1598480", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1598480" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/201811-23", "reference_id": "GLSA-201811-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-23" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1185", "reference_id": "RHSA-2020:1185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1636", "reference_id": "RHSA-2020:1636", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1636" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2018-13139" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-epv5-9g1z-8ubq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4059?format=api", "vulnerability_id": "VCID-fcz6-buz2-5uhk", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8361.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8361.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81754", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81692", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81752", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81761", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449518", "reference_id": "1449518", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449518" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862205", "reference_id": "862205", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862205" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/201811-23", "reference_id": "GLSA-201811-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-23" }, { "reference_url": "https://usn.ubuntu.com/3306-1/", "reference_id": "USN-3306-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3306-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2017-8361" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fcz6-buz2-5uhk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2913?format=api", "vulnerability_id": "VCID-ffhb-rqr9-ufek", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14246.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14246.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14246", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00678", "scoring_system": "epss", "scoring_elements": "0.72112", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00678", "scoring_system": "epss", "scoring_elements": "0.72021", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00678", "scoring_system": "epss", "scoring_elements": "0.72105", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00678", "scoring_system": "epss", "scoring_elements": "0.72117", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14246" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14246", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14246" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500007", "reference_id": "1500007", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500007" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876682", "reference_id": "876682", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876682" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/202007-65", "reference_id": "GLSA-202007-65", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202007-65" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2017-14246" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ffhb-rqr9-ufek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3935?format=api", "vulnerability_id": "VCID-g5n8-c64t-t7g3", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7742.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7742.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7742", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00565", "scoring_system": "epss", "scoring_elements": "0.68905", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00565", "scoring_system": "epss", "scoring_elements": "0.68998", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00565", "scoring_system": "epss", "scoring_elements": "0.6901", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00565", "scoring_system": "epss", "scoring_elements": "0.69006", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7742" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1442034", "reference_id": "1442034", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1442034" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860255", "reference_id": "860255", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860255" }, { "reference_url": "https://security.gentoo.org/glsa/201707-04", "reference_id": "GLSA-201707-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201707-04" }, { "reference_url": "https://usn.ubuntu.com/3306-1/", "reference_id": "USN-3306-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3306-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2017-7742" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g5n8-c64t-t7g3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/183637?format=api", "vulnerability_id": "VCID-gfbe-ysph-y3dq", "summary": "Multiple vulnerabilities have been found in libsndfile, the worst\n of which might allow remote attackers to cause a Denial of Service\n condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6892.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6892.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6892", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00964", "scoring_system": "epss", "scoring_elements": "0.76969", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00964", "scoring_system": "epss", "scoring_elements": "0.7704", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00964", "scoring_system": "epss", "scoring_elements": "0.77054", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00964", "scoring_system": "epss", "scoring_elements": "0.77047", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6892" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6892", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6892" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1463326", "reference_id": "1463326", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1463326" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864704", "reference_id": "864704", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864704" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/201811-23", "reference_id": "GLSA-201811-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-23" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2017-6892" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gfbe-ysph-y3dq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/197686?format=api", "vulnerability_id": "VCID-gzkx-m9yn-wyhn", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19661.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19661.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19661", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00661", "scoring_system": "epss", "scoring_elements": "0.71614", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00661", "scoring_system": "epss", "scoring_elements": "0.717", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00661", "scoring_system": "epss", "scoring_elements": "0.71713", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00661", "scoring_system": "epss", "scoring_elements": "0.71711", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19661" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19661", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19661" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1659627", "reference_id": "1659627", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1659627" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2018-19661" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gzkx-m9yn-wyhn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2963?format=api", "vulnerability_id": "VCID-hfbd-shzp-b3an", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14634.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14634.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14634", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01154", "scoring_system": "epss", "scoring_elements": "0.79017", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01154", "scoring_system": "epss", "scoring_elements": "0.7894", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01154", "scoring_system": "epss", "scoring_elements": "0.79006", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01154", "scoring_system": "epss", "scoring_elements": "0.7902", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14634" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14634", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14634" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1499982", "reference_id": "1499982", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1499982" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876783", "reference_id": "876783", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876783" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/201811-23", "reference_id": "GLSA-201811-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-23" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2017-14634" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hfbd-shzp-b3an" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4061?format=api", "vulnerability_id": "VCID-hhxq-azce-sqgn", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8363.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8363.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8363", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.76854", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.76776", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.76846", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.7686", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8363" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458694", "reference_id": "1458694", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458694" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862203", "reference_id": "862203", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862203" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/201811-23", "reference_id": "GLSA-201811-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-23" }, { "reference_url": "https://usn.ubuntu.com/3306-1/", "reference_id": "USN-3306-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3306-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2017-8363" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hhxq-azce-sqgn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/197685?format=api", "vulnerability_id": "VCID-jeuv-pu6s-6bej", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19662.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19662.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19662", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00695", "scoring_system": "epss", "scoring_elements": "0.72379", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00695", "scoring_system": "epss", "scoring_elements": "0.7246", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00695", "scoring_system": "epss", "scoring_elements": "0.72475", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00695", "scoring_system": "epss", "scoring_elements": "0.7247", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19662" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19662", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19662" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1659631", "reference_id": "1659631", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1659631" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1636", "reference_id": "RHSA-2020:1636", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1636" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3922", "reference_id": "RHSA-2020:3922", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3922" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2018-19662" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jeuv-pu6s-6bej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4062?format=api", "vulnerability_id": "VCID-jg51-g5fv-t7gq", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8365.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8365.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8365", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.76854", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.76776", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.76846", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00948", "scoring_system": "epss", "scoring_elements": "0.7686", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8365" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449520", "reference_id": "1449520", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1449520" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862202", "reference_id": "862202", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862202" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/201811-23", "reference_id": "GLSA-201811-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-23" }, { "reference_url": "https://usn.ubuntu.com/3306-1/", "reference_id": "USN-3306-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3306-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2017-8365" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jg51-g5fv-t7gq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/178909?format=api", "vulnerability_id": "VCID-kbpv-6x22-hkdg", "summary": "Multiple vulnerabilities have been found in libsndfile, the worst\n of which might allow remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9496.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9496.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9496", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30553", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30749", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30768", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30754", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9496" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9496", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9496" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1178840", "reference_id": "1178840", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1178840" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774162", "reference_id": "774162", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774162" }, { "reference_url": "https://security.gentoo.org/glsa/201612-03", "reference_id": "GLSA-201612-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201612-03" }, { "reference_url": "https://usn.ubuntu.com/2832-1/", "reference_id": "USN-2832-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2832-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078818?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.25-9.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13kh-3cqw-f7dv" }, { "vulnerability": "VCID-31yx-1x8c-gfam" }, { "vulnerability": "VCID-3tvj-x7py-bkc2" }, { "vulnerability": "VCID-51dk-kwjz-33h8" }, { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-fcz6-buz2-5uhk" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-g5n8-c64t-t7g3" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-hhxq-azce-sqgn" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-jg51-g5fv-t7gq" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-q5wz-gzqz-6bah" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-shus-3bqq-nfhd" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-vect-58ud-s3du" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.25-9.1" } ], "aliases": [ "CVE-2014-9496" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kbpv-6x22-hkdg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5206?format=api", "vulnerability_id": "VCID-p449-1w8b-n7d1", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19432.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19432.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19432", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.77067", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.76988", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.77059", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00965", "scoring_system": "epss", "scoring_elements": "0.77072", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19432" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19432", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19432" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652566", "reference_id": "1652566", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652566" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914381", "reference_id": "914381", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914381" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2018-19432" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p449-1w8b-n7d1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184047?format=api", "vulnerability_id": "VCID-pj6c-bwvf-zbh9", "summary": "An integer overflow in libsndfile might allow remote attackers to\n execute arbitrary code or cause a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2696.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2696.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-2696", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.08918", "scoring_system": "epss", "scoring_elements": "0.92764", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.08918", "scoring_system": "epss", "scoring_elements": "0.92789", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.08918", "scoring_system": "epss", "scoring_elements": "0.92792", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.08918", "scoring_system": "epss", "scoring_elements": "0.92791", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-2696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2696" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=721234", "reference_id": "721234", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=721234" }, { "reference_url": "https://security.gentoo.org/glsa/201312-14", "reference_id": "GLSA-201312-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201312-14" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1084", "reference_id": "RHSA-2011:1084", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1084" }, { "reference_url": "https://usn.ubuntu.com/1174-1/", "reference_id": "USN-1174-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1174-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078817?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.25-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13kh-3cqw-f7dv" }, { "vulnerability": "VCID-31yx-1x8c-gfam" }, { "vulnerability": "VCID-3tvj-x7py-bkc2" }, { "vulnerability": "VCID-51dk-kwjz-33h8" }, { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-fcz6-buz2-5uhk" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-g5n8-c64t-t7g3" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-hhxq-azce-sqgn" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-jg51-g5fv-t7gq" }, { "vulnerability": "VCID-kbpv-6x22-hkdg" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-q5wz-gzqz-6bah" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-shus-3bqq-nfhd" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-vect-58ud-s3du" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.25-5" } ], "aliases": [ "CVE-2011-2696" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pj6c-bwvf-zbh9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3896?format=api", "vulnerability_id": "VCID-q5wz-gzqz-6bah", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7585.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7585.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7585", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47772", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47913", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47929", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7585" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7585", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7585" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1440756", "reference_id": "1440756", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1440756" }, { "reference_url": "https://security.gentoo.org/glsa/201707-04", "reference_id": "GLSA-201707-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201707-04" }, { "reference_url": "https://usn.ubuntu.com/3306-1/", "reference_id": "USN-3306-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3306-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2017-7585" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q5wz-gzqz-6bah" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5245?format=api", "vulnerability_id": "VCID-rctr-whu4-cqaf", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19758.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19758.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19758", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00879", "scoring_system": "epss", "scoring_elements": "0.75855", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00879", "scoring_system": "epss", "scoring_elements": "0.75774", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00879", "scoring_system": "epss", "scoring_elements": "0.75846", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00879", "scoring_system": "epss", "scoring_elements": "0.7586", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19758" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19758", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19758" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1659638", "reference_id": "1659638", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1659638" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917416", "reference_id": "917416", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917416" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://usn.ubuntu.com/4013-1/", "reference_id": "USN-4013-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4013-1/" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2018-19758" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rctr-whu4-cqaf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3897?format=api", "vulnerability_id": "VCID-shus-3bqq-nfhd", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7586.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7586.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7586", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00168", "scoring_system": "epss", "scoring_elements": "0.37707", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00168", "scoring_system": "epss", "scoring_elements": "0.37884", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00168", "scoring_system": "epss", "scoring_elements": "0.3791", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00168", "scoring_system": "epss", "scoring_elements": "0.37897", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7586" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7586", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7586" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1440758", "reference_id": "1440758", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1440758" }, { "reference_url": "https://security.gentoo.org/glsa/201707-04", "reference_id": "GLSA-201707-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201707-04" }, { "reference_url": "https://usn.ubuntu.com/3306-1/", "reference_id": "USN-3306-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3306-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2017-7586" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-shus-3bqq-nfhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2617?format=api", "vulnerability_id": "VCID-uj8n-yhhe-syf8", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12562.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12562.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12562", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01675", "scoring_system": "epss", "scoring_elements": "0.82623", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01675", "scoring_system": "epss", "scoring_elements": "0.82559", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01675", "scoring_system": "epss", "scoring_elements": "0.82621", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01675", "scoring_system": "epss", "scoring_elements": "0.82628", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12562" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12562", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12562" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483140", "reference_id": "1483140", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483140" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869166", "reference_id": "869166", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869166" }, { "reference_url": "https://security.archlinux.org/AVG-1549", "reference_id": "AVG-1549", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1549" }, { "reference_url": "https://security.archlinux.org/AVG-1550", "reference_id": "AVG-1550", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1550" }, { "reference_url": "https://security.gentoo.org/glsa/201811-23", "reference_id": "GLSA-201811-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201811-23" }, { "reference_url": "https://usn.ubuntu.com/4704-1/", "reference_id": "USN-4704-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4704-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078821?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.28-6%2Bdeb10u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.28-6%252Bdeb10u1" } ], "aliases": [ "CVE-2017-12562" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uj8n-yhhe-syf8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/12092?format=api", "vulnerability_id": "VCID-v1vs-9jt5-vqg7", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-33065.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-33065.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33065", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09774", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09737", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09786", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09788", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33065" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33065", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33065" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1051891", "reference_id": "1051891", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1051891" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238934", "reference_id": "2238934", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238934" }, { "reference_url": "https://github.com/libsndfile/libsndfile/issues/789", "reference_id": "789", "reference_type": "", "scores": [ { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-28T18:23:14Z/" } ], "url": "https://github.com/libsndfile/libsndfile/issues/789" }, { "reference_url": "https://github.com/libsndfile/libsndfile/issues/833", "reference_id": "833", "reference_type": "", "scores": [ { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-28T18:23:14Z/" } ], "url": "https://github.com/libsndfile/libsndfile/issues/833" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-33065", "reference_id": "CVE-2022-33065", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-33065" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2184", "reference_id": "RHSA-2024:2184", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2184" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3030", "reference_id": "RHSA-2024:3030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3030" }, { "reference_url": "https://usn.ubuntu.com/6471-1/", "reference_id": "USN-6471-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6471-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1074822?format=api", "purl": "pkg:deb/debian/libsndfile@1.2.0-1%2Bdeb12u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8hud-r6g5-5bhj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.2.0-1%252Bdeb12u1" } ], "aliases": [ "CVE-2022-33065" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v1vs-9jt5-vqg7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3934?format=api", "vulnerability_id": "VCID-vect-58ud-s3du", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7741.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7741.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7741", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.62176", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.62278", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.62289", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00417", "scoring_system": "epss", "scoring_elements": "0.62285", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7741" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1442033", "reference_id": "1442033", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1442033" }, { "reference_url": "https://security.gentoo.org/glsa/201707-04", "reference_id": "GLSA-201707-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201707-04" }, { "reference_url": "https://usn.ubuntu.com/3306-1/", "reference_id": "USN-3306-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3306-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078820?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.27-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.27-3" } ], "aliases": [ "CVE-2017-7741" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vect-58ud-s3du" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/10112?format=api", "vulnerability_id": "VCID-y64b-hjum-wkeg", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4156.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4156.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4156", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00103", "scoring_system": "epss", "scoring_elements": "0.27939", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00103", "scoring_system": "epss", "scoring_elements": "0.27723", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00103", "scoring_system": "epss", "scoring_elements": "0.27923", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00103", "scoring_system": "epss", "scoring_elements": "0.27948", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4156" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4156", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4156" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/libsndfile/libsndfile/issues/731", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/libsndfile/libsndfile/issues/731" }, { "reference_url": "https://github.com/libsndfile/libsndfile/pull/732/commits/4c30646abf7834e406f7e2429c70bc254e18beab", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/libsndfile/libsndfile/pull/732/commits/4c30646abf7834e406f7e2429c70bc254e18beab" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014713", "reference_id": "1014713", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014713" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2027690", "reference_id": "2027690", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2027690" }, { "reference_url": "https://security.archlinux.org/AVG-2704", "reference_id": "AVG-2704", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2704" }, { "reference_url": "https://security.archlinux.org/AVG-2705", "reference_id": "AVG-2705", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2705" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4156", "reference_id": "CVE-2021-4156", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4156" }, { "reference_url": "https://security.gentoo.org/glsa/202309-11", "reference_id": "GLSA-202309-11", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202309-11" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1968", "reference_id": "RHSA-2022:1968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1968" }, { "reference_url": "https://usn.ubuntu.com/5409-1/", "reference_id": "USN-5409-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5409-1/" }, { "reference_url": "https://usn.ubuntu.com/7273-1/", "reference_id": "USN-7273-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7273-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1074822?format=api", "purl": "pkg:deb/debian/libsndfile@1.2.0-1%2Bdeb12u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8hud-r6g5-5bhj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.2.0-1%252Bdeb12u1" } ], "aliases": [ "CVE-2021-4156" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y64b-hjum-wkeg" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/177293?format=api", "vulnerability_id": "VCID-854e-bkyd-p7eg", "summary": "Multiple heap-based buffer overflow vulnerabilities in libsndfile might\n allow remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1791.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1791.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1791", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.08475", "scoring_system": "epss", "scoring_elements": "0.92543", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.08475", "scoring_system": "epss", "scoring_elements": "0.92569", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.08475", "scoring_system": "epss", "scoring_elements": "0.92572", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1791" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1791", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1791" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=502658", "reference_id": "502658", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=502658" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=528650", "reference_id": "528650", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=528650" }, { "reference_url": "https://security.gentoo.org/glsa/200905-09", "reference_id": "GLSA-200905-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200905-09" }, { "reference_url": "https://usn.ubuntu.com/849-1/", "reference_id": "USN-849-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/849-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078815?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.21-3%2Bsqueeze1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13kh-3cqw-f7dv" }, { "vulnerability": "VCID-31yx-1x8c-gfam" }, { "vulnerability": "VCID-3tvj-x7py-bkc2" }, { "vulnerability": "VCID-51dk-kwjz-33h8" }, { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-fcz6-buz2-5uhk" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-g5n8-c64t-t7g3" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-hhxq-azce-sqgn" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-jg51-g5fv-t7gq" }, { "vulnerability": "VCID-kbpv-6x22-hkdg" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-pj6c-bwvf-zbh9" }, { "vulnerability": "VCID-q5wz-gzqz-6bah" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-shus-3bqq-nfhd" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-vect-58ud-s3du" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.21-3%252Bsqueeze1" } ], "aliases": [ "CVE-2009-1791" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-854e-bkyd-p7eg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184310?format=api", "vulnerability_id": "VCID-b886-j5p9-qbhs", "summary": "A buffer overflow vulnerability in libsndfile might allow remote attackers\n to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0186.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0186.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03235", "scoring_system": "epss", "scoring_elements": "0.87362", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03235", "scoring_system": "epss", "scoring_elements": "0.87407", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.03235", "scoring_system": "epss", "scoring_elements": "0.87412", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.03235", "scoring_system": "epss", "scoring_elements": "0.8741", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0186" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=488361", "reference_id": "488361", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=488361" }, { "reference_url": "https://security.gentoo.org/glsa/200904-16", "reference_id": "GLSA-200904-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200904-16" }, { "reference_url": "https://usn.ubuntu.com/749-1/", "reference_id": "USN-749-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/749-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078815?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.21-3%2Bsqueeze1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13kh-3cqw-f7dv" }, { "vulnerability": "VCID-31yx-1x8c-gfam" }, { "vulnerability": "VCID-3tvj-x7py-bkc2" }, { "vulnerability": "VCID-51dk-kwjz-33h8" }, { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-fcz6-buz2-5uhk" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-g5n8-c64t-t7g3" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-hhxq-azce-sqgn" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-jg51-g5fv-t7gq" }, { "vulnerability": "VCID-kbpv-6x22-hkdg" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-pj6c-bwvf-zbh9" }, { "vulnerability": "VCID-q5wz-gzqz-6bah" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-shus-3bqq-nfhd" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-vect-58ud-s3du" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.21-3%252Bsqueeze1" } ], "aliases": [ "CVE-2009-0186" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b886-j5p9-qbhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/201633?format=api", "vulnerability_id": "VCID-y7us-y2nb-qbge", "summary": "The (1) htk_read_header, (2) alaw_init, (3) ulaw_init, (4) pcm_init, (5) float32_init, and (6) sds_read_header functions in libsndfile 1.0.20 allow context-dependent attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted audio file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4835", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.593", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.5941", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.59422", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.59413", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4835" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4835", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4835" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530831", "reference_id": "530831", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530831" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078815?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.21-3%2Bsqueeze1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13kh-3cqw-f7dv" }, { "vulnerability": "VCID-31yx-1x8c-gfam" }, { "vulnerability": "VCID-3tvj-x7py-bkc2" }, { "vulnerability": "VCID-51dk-kwjz-33h8" }, { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-fcz6-buz2-5uhk" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-g5n8-c64t-t7g3" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-hhxq-azce-sqgn" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-jg51-g5fv-t7gq" }, { "vulnerability": "VCID-kbpv-6x22-hkdg" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-pj6c-bwvf-zbh9" }, { "vulnerability": "VCID-q5wz-gzqz-6bah" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-shus-3bqq-nfhd" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-vect-58ud-s3du" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.21-3%252Bsqueeze1" } ], "aliases": [ "CVE-2009-4835" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y7us-y2nb-qbge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/177292?format=api", "vulnerability_id": "VCID-zgqy-8vwh-gba3", "summary": "Multiple heap-based buffer overflow vulnerabilities in libsndfile might\n allow remote attackers to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1788.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1788.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1788", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0857", "scoring_system": "epss", "scoring_elements": "0.9259", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0857", "scoring_system": "epss", "scoring_elements": "0.92615", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0857", "scoring_system": "epss", "scoring_elements": "0.92619", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1788" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1788", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1788" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=502657", "reference_id": "502657", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=502657" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=528650", "reference_id": "528650", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=528650" }, { "reference_url": "https://security.gentoo.org/glsa/200905-09", "reference_id": "GLSA-200905-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200905-09" }, { "reference_url": "https://usn.ubuntu.com/849-1/", "reference_id": "USN-849-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/849-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1078815?format=api", "purl": "pkg:deb/debian/libsndfile@1.0.21-3%2Bsqueeze1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-13kh-3cqw-f7dv" }, { "vulnerability": "VCID-31yx-1x8c-gfam" }, { "vulnerability": "VCID-3tvj-x7py-bkc2" }, { "vulnerability": "VCID-51dk-kwjz-33h8" }, { "vulnerability": "VCID-6brm-dp9v-mygx" }, { "vulnerability": "VCID-74wv-8fuc-6ua9" }, { "vulnerability": "VCID-ayu4-2xeb-mqgp" }, { "vulnerability": "VCID-eky9-zq9s-jkaa" }, { "vulnerability": "VCID-epv5-9g1z-8ubq" }, { "vulnerability": "VCID-fcz6-buz2-5uhk" }, { "vulnerability": "VCID-ffhb-rqr9-ufek" }, { "vulnerability": "VCID-g5n8-c64t-t7g3" }, { "vulnerability": "VCID-gfbe-ysph-y3dq" }, { "vulnerability": "VCID-gzkx-m9yn-wyhn" }, { "vulnerability": "VCID-hfbd-shzp-b3an" }, { "vulnerability": "VCID-hhxq-azce-sqgn" }, { "vulnerability": "VCID-jeuv-pu6s-6bej" }, { "vulnerability": "VCID-jg51-g5fv-t7gq" }, { "vulnerability": "VCID-kbpv-6x22-hkdg" }, { "vulnerability": "VCID-p449-1w8b-n7d1" }, { "vulnerability": "VCID-pj6c-bwvf-zbh9" }, { "vulnerability": "VCID-q5wz-gzqz-6bah" }, { "vulnerability": "VCID-rctr-whu4-cqaf" }, { "vulnerability": "VCID-shus-3bqq-nfhd" }, { "vulnerability": "VCID-uj8n-yhhe-syf8" }, { "vulnerability": "VCID-v1vs-9jt5-vqg7" }, { "vulnerability": "VCID-vect-58ud-s3du" }, { "vulnerability": "VCID-y64b-hjum-wkeg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.21-3%252Bsqueeze1" } ], "aliases": [ "CVE-2009-1788" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zgqy-8vwh-gba3" } ], "risk_score": "4.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsndfile@1.0.21-3%252Bsqueeze1" }