{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","type":"deb","namespace":"debian","name":"xymon","version":"4.3.30-4","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"4.3.7-1","latest_non_vulnerable_version":"4.3.30-5","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182778?format=json","vulnerability_id":"VCID-2hyp-4h92-1yfb","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2056","reference_id":"","reference_type":"","scores":[{"value":"0.56347","scoring_system":"epss","scoring_elements":"0.98154","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2056"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108347?format=json","purl":"pkg:deb/debian/xymon@4.3.25-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.25-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2016-2056"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2hyp-4h92-1yfb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206819?format=json","vulnerability_id":"VCID-2tkz-phg5-hyh2","summary":"In Xymon through 4.3.28, a stack-based buffer overflow exists in the status-log viewer component because of &nbsp; expansion in svcstatus.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13486","reference_id":"","reference_type":"","scores":[{"value":"0.00962","scoring_system":"epss","scoring_elements":"0.76941","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13486"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13486","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13486"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108348?format=json","purl":"pkg:deb/debian/xymon@4.3.29-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.29-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2019-13486"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2tkz-phg5-hyh2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/201950?format=json","vulnerability_id":"VCID-3s4b-36b4-yqay","summary":"Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in Xymon before 4.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1716","reference_id":"","reference_type":"","scores":[{"value":"0.00503","scoring_system":"epss","scoring_elements":"0.66544","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1716"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1716","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1716"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108342?format=json","purl":"pkg:deb/debian/xymon@4.3.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2011-1716"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3s4b-36b4-yqay"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206810?format=json","vulnerability_id":"VCID-6x2c-v36s-93hc","summary":"In Xymon through 4.3.28, a buffer overflow vulnerability exists in reportlog.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13452","reference_id":"","reference_type":"","scores":[{"value":"0.00962","scoring_system":"epss","scoring_elements":"0.76941","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13452"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13452","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13452"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108348?format=json","purl":"pkg:deb/debian/xymon@4.3.29-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.29-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2019-13452"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6x2c-v36s-93hc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206817?format=json","vulnerability_id":"VCID-9ty9-wmbb-rkf8","summary":"In Xymon through 4.3.28, a buffer overflow exists in the status-log viewer CGI because of &nbsp; expansion in appfeed.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13484","reference_id":"","reference_type":"","scores":[{"value":"0.00962","scoring_system":"epss","scoring_elements":"0.76941","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13484"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13484","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13484"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108348?format=json","purl":"pkg:deb/debian/xymon@4.3.29-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.29-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2019-13484"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9ty9-wmbb-rkf8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206812?format=json","vulnerability_id":"VCID-f5uv-3hne-rfd4","summary":"In Xymon through 4.3.28, a stack-based buffer overflow vulnerability exists in the alert acknowledgment CGI tool because of &nbsp; expansion in acknowledge.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13455","reference_id":"","reference_type":"","scores":[{"value":"0.01049","scoring_system":"epss","scoring_elements":"0.77947","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13455"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13455","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13455"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108348?format=json","purl":"pkg:deb/debian/xymon@4.3.29-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.29-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2019-13455"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f5uv-3hne-rfd4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182776?format=json","vulnerability_id":"VCID-fcva-thwx-p3ec","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2054","reference_id":"","reference_type":"","scores":[{"value":"0.05456","scoring_system":"epss","scoring_elements":"0.90396","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2054"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108347?format=json","purl":"pkg:deb/debian/xymon@4.3.25-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.25-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2016-2054"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fcva-thwx-p3ec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182777?format=json","vulnerability_id":"VCID-gq76-yduj-s3c9","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2055","reference_id":"","reference_type":"","scores":[{"value":"0.67997","scoring_system":"epss","scoring_elements":"0.98612","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2055"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108347?format=json","purl":"pkg:deb/debian/xymon@4.3.25-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.25-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2016-2055"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gq76-yduj-s3c9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206801?format=json","vulnerability_id":"VCID-jk7t-mpj7-5ycj","summary":"In Xymon through 4.3.28, an XSS vulnerability exists in the csvinfo CGI script due to insufficient filtering of the db parameter.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13274","reference_id":"","reference_type":"","scores":[{"value":"0.00248","scoring_system":"epss","scoring_elements":"0.48334","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13274"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13274","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13274"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108348?format=json","purl":"pkg:deb/debian/xymon@4.3.29-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.29-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2019-13274"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jk7t-mpj7-5ycj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/202877?format=json","vulnerability_id":"VCID-kpb6-yzpd-h3c2","summary":"Directory traversal vulnerability in the trend-data daemon (xymond_rrd) in Xymon 4.x before 4.3.12 allows remote attackers to delete arbitrary files via a .. (dot dot) in the host name in a \"drophost\" command.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4173","reference_id":"","reference_type":"","scores":[{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72688","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4173"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4173","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4173"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=717895","reference_id":"717895","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=717895"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108345?format=json","purl":"pkg:deb/debian/xymon@4.3.17-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.17-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2013-4173"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kpb6-yzpd-h3c2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/203815?format=json","vulnerability_id":"VCID-ngg5-13xd-6bbk","summary":"Buffer overflow in xymon 4.3.17-1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-1430","reference_id":"","reference_type":"","scores":[{"value":"0.00436","scoring_system":"epss","scoring_elements":"0.63428","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-1430"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1430","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1430"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776007","reference_id":"776007","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776007"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108346?format=json","purl":"pkg:deb/debian/xymon@4.3.17-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.17-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2015-1430"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ngg5-13xd-6bbk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206808?format=json","vulnerability_id":"VCID-nj29-8skr-c7cp","summary":"In Xymon through 4.3.28, a buffer overflow vulnerability exists in history.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13451","reference_id":"","reference_type":"","scores":[{"value":"0.00962","scoring_system":"epss","scoring_elements":"0.76941","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13451"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13451","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13451"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108348?format=json","purl":"pkg:deb/debian/xymon@4.3.29-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.29-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2019-13451"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nj29-8skr-c7cp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206818?format=json","vulnerability_id":"VCID-pgr4-vwh4-gbcy","summary":"In Xymon through 4.3.28, a stack-based buffer overflow vulnerability exists in the history viewer component via a long hostname or service parameter to history.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13485","reference_id":"","reference_type":"","scores":[{"value":"0.00962","scoring_system":"epss","scoring_elements":"0.76941","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13485"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13485","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13485"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108348?format=json","purl":"pkg:deb/debian/xymon@4.3.29-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.29-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2019-13485"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pgr4-vwh4-gbcy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206800?format=json","vulnerability_id":"VCID-t8qe-td2f-q3dh","summary":"In Xymon through 4.3.28, a buffer overflow vulnerability exists in the csvinfo CGI script. The overflow may be exploited by sending a crafted GET request that triggers an sprintf of the srcdb parameter.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13273","reference_id":"","reference_type":"","scores":[{"value":"0.00474","scoring_system":"epss","scoring_elements":"0.65239","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13273"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108348?format=json","purl":"pkg:deb/debian/xymon@4.3.29-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.29-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2019-13273"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t8qe-td2f-q3dh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182780?format=json","vulnerability_id":"VCID-u2ta-uh2d-6bgj","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2058","reference_id":"","reference_type":"","scores":[{"value":"0.00241","scoring_system":"epss","scoring_elements":"0.47628","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2058"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108347?format=json","purl":"pkg:deb/debian/xymon@4.3.25-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.25-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2016-2058"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u2ta-uh2d-6bgj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182779?format=json","vulnerability_id":"VCID-v3xn-tz3b-e3gy","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2057","reference_id":"","reference_type":"","scores":[{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27059","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2057"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2054"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2055"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2056"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2057"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2058"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108347?format=json","purl":"pkg:deb/debian/xymon@4.3.25-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.25-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108341?format=json","purl":"pkg:deb/debian/xymon@4.3.30-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108344?format=json","purl":"pkg:deb/debian/xymon@4.3.30-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/108343?format=json","purl":"pkg:deb/debian/xymon@4.3.30-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-5%3Fdistro=trixie"}],"aliases":["CVE-2016-2057"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v3xn-tz3b-e3gy"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xymon@4.3.30-4%3Fdistro=trixie"}