{"url":"http://public2.vulnerablecode.io/api/packages/124278?format=json","purl":"pkg:deb/debian/psi-plus@1.4.1456-2.2?distro=trixie","type":"deb","namespace":"debian","name":"psi-plus","version":"1.4.1456-2.2","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/98713?format=json","vulnerability_id":"VCID-6gyw-uz4a-s7gr","summary":"An incorrect implementation of \"XEP-0280: Message Carbons\" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for Psi+ (0.16.563.580 - 0.16.571.627).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5593","reference_id":"","reference_type":"","scores":[{"value":"0.00245","scoring_system":"epss","scoring_elements":"0.47968","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00245","scoring_system":"epss","scoring_elements":"0.48031","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00245","scoring_system":"epss","scoring_elements":"0.48034","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00245","scoring_system":"epss","scoring_elements":"0.48016","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00245","scoring_system":"epss","scoring_elements":"0.47986","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00245","scoring_system":"epss","scoring_elements":"0.47999","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5593"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/124277?format=json","purl":"pkg:deb/debian/psi-plus@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/psi-plus@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/124276?format=json","purl":"pkg:deb/debian/psi-plus@1.4.554-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/psi-plus@1.4.554-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/124279?format=json","purl":"pkg:deb/debian/psi-plus@1.4.1456-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/psi-plus@1.4.1456-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/124278?format=json","purl":"pkg:deb/debian/psi-plus@1.4.1456-2.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/psi-plus@1.4.1456-2.2%3Fdistro=trixie"}],"aliases":["CVE-2017-5593"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6gyw-uz4a-s7gr"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/psi-plus@1.4.1456-2.2%3Fdistro=trixie"}