{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","type":"deb","namespace":"debian","name":"graphviz","version":"2.42.2-5+deb11u1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.42.2-8","latest_non_vulnerable_version":"14.1.2-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/232050?format=json","vulnerability_id":"VCID-b1y3-uuvp-qfcs","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-46045","reference_id":"","reference_type":"","scores":[{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12672","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-46045"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.openwall.com/lists/oss-security/2024/02/01/2","reference_id":"2","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/"}],"url":"https://www.openwall.com/lists/oss-security/2024/02/01/2"},{"reference_url":"http://seclists.org/fulldisclosure/2024/Feb/24","reference_id":"24","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/"}],"url":"http://seclists.org/fulldisclosure/2024/Feb/24"},{"reference_url":"https://seclists.org/fulldisclosure/2024/Feb/24","reference_id":"24","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/"}],"url":"https://seclists.org/fulldisclosure/2024/Feb/24"},{"reference_url":"https://gitlab.com/graphviz/graphviz/-/issues/2441","reference_id":"2441","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/"}],"url":"https://gitlab.com/graphviz/graphviz/-/issues/2441"},{"reference_url":"https://seclists.org/fulldisclosure/2024/Jan/73","reference_id":"73","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/"}],"url":"https://seclists.org/fulldisclosure/2024/Jan/73"},{"reference_url":"https://usn.ubuntu.com/6708-1/","reference_id":"USN-6708-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6708-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179514?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2023-46045"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b1y3-uuvp-qfcs"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/122265?format=json","vulnerability_id":"VCID-259b-4br2-9qhq","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10196","reference_id":"","reference_type":"","scores":[{"value":"0.00317","scoring_system":"epss","scoring_elements":"0.55068","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10196"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898841","reference_id":"898841","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898841"},{"reference_url":"https://usn.ubuntu.com/5264-1/","reference_id":"USN-5264-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5264-1/"},{"reference_url":"https://usn.ubuntu.com/5971-1/","reference_id":"USN-5971-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5971-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179511?format=json","purl":"pkg:deb/debian/graphviz@2.40.1-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.40.1-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179499?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2018-10196"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-259b-4br2-9qhq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85230?format=json","vulnerability_id":"VCID-64r8-2nfb-gbh6","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0978","reference_id":"","reference_type":"","scores":[{"value":"0.06542","scoring_system":"epss","scoring_elements":"0.91275","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-0978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1236","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1236"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745","reference_id":"734745","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745"},{"reference_url":"https://security.gentoo.org/glsa/201702-06","reference_id":"GLSA-201702-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-06"},{"reference_url":"https://usn.ubuntu.com/2083-1/","reference_id":"USN-2083-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2083-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179508?format=json","purl":"pkg:deb/debian/graphviz@2.26.3-16?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.26.3-16%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179499?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2014-0978"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-64r8-2nfb-gbh6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/91736?format=json","vulnerability_id":"VCID-df4b-dmdq-tuf7","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9157","reference_id":"","reference_type":"","scores":[{"value":"0.01899","scoring_system":"epss","scoring_elements":"0.83547","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9157"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9157","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9157"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=772648","reference_id":"772648","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=772648"},{"reference_url":"https://usn.ubuntu.com/2435-1/","reference_id":"USN-2435-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2435-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179510?format=json","purl":"pkg:deb/debian/graphviz@2.38.0-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.38.0-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179499?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2014-9157"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-df4b-dmdq-tuf7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85529?format=json","vulnerability_id":"VCID-jgzm-9zpf-cqfn","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-1235","reference_id":"","reference_type":"","scores":[{"value":"0.00919","scoring_system":"epss","scoring_elements":"0.76293","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-1235"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745","reference_id":"734745","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745"},{"reference_url":"https://security.gentoo.org/glsa/201702-06","reference_id":"GLSA-201702-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-06"},{"reference_url":"https://usn.ubuntu.com/2083-1/","reference_id":"USN-2083-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2083-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179509?format=json","purl":"pkg:deb/debian/graphviz@2.26.3-16.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.26.3-16.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179499?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2014-1235"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jgzm-9zpf-cqfn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56368?format=json","vulnerability_id":"VCID-m2h1-bpdm-3ygt","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4555","reference_id":"","reference_type":"","scores":[{"value":"0.05229","scoring_system":"epss","scoring_elements":"0.90101","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4555"},{"reference_url":"https://security.gentoo.org/glsa/200811-04","reference_id":"GLSA-200811-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200811-04"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179504?format=json","purl":"pkg:deb/debian/graphviz@2.20.2-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.20.2-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179499?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2008-4555"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m2h1-bpdm-3ygt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/156171?format=json","vulnerability_id":"VCID-pjca-rqz1-3kgh","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-18032","reference_id":"","reference_type":"","scores":[{"value":"0.01191","scoring_system":"epss","scoring_elements":"0.79149","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-18032"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988000","reference_id":"988000","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988000"},{"reference_url":"https://security.gentoo.org/glsa/202107-04","reference_id":"GLSA-202107-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202107-04"},{"reference_url":"https://usn.ubuntu.com/5264-1/","reference_id":"USN-5264-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5264-1/"},{"reference_url":"https://usn.ubuntu.com/5971-1/","reference_id":"USN-5971-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5971-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179512?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179499?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2020-18032"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pjca-rqz1-3kgh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38627?format=json","vulnerability_id":"VCID-qx3b-9sez-uuew","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-4803","reference_id":"","reference_type":"","scores":[{"value":"0.00063","scoring_system":"epss","scoring_elements":"0.19923","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-4803"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336985","reference_id":"336985","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336985"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179500?format=json","purl":"pkg:deb/debian/graphviz@2.2.1-1sarge1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.2.1-1sarge1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179499?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2005-4803"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qx3b-9sez-uuew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85530?format=json","vulnerability_id":"VCID-vedv-gzmn-ybcv","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-1236","reference_id":"","reference_type":"","scores":[{"value":"0.07859","scoring_system":"epss","scoring_elements":"0.92127","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-1236"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1236","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1236"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745","reference_id":"734745","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745"},{"reference_url":"https://security.gentoo.org/glsa/201702-06","reference_id":"GLSA-201702-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-06"},{"reference_url":"https://usn.ubuntu.com/2083-1/","reference_id":"USN-2083-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2083-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179509?format=json","purl":"pkg:deb/debian/graphviz@2.26.3-16.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.26.3-16.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179499?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2014-1236"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vedv-gzmn-ybcv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/62521?format=json","vulnerability_id":"VCID-zrqc-5s44-1kfb","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3736","reference_id":"","reference_type":"","scores":[{"value":"0.00121","scoring_system":"epss","scoring_elements":"0.30762","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3736"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559797","reference_id":"559797","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559797"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559801","reference_id":"559801","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559801"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559806","reference_id":"559806","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559806"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559809","reference_id":"559809","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559809"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559811","reference_id":"559811","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559811"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559814","reference_id":"559814","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559814"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559815","reference_id":"559815","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559815"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559816","reference_id":"559816","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559816"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559819","reference_id":"559819","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559819"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559822","reference_id":"559822","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559822"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559824","reference_id":"559824","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559824"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559825","reference_id":"559825","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559825"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559826","reference_id":"559826","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559826"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559829","reference_id":"559829","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559829"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559831","reference_id":"559831","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559831"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559832","reference_id":"559832","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559832"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559833","reference_id":"559833","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559833"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559834","reference_id":"559834","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559834"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559835","reference_id":"559835","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559835"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559836","reference_id":"559836","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559836"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559837","reference_id":"559837","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559837"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559840","reference_id":"559840","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559840"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559844","reference_id":"559844","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559844"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559845","reference_id":"559845","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559845"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702436","reference_id":"702436","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702436"},{"reference_url":"https://security.gentoo.org/glsa/201311-10","reference_id":"GLSA-201311-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201311-10"},{"reference_url":"https://security.gentoo.org/glsa/201412-08","reference_id":"GLSA-201412-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-08"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/179507?format=json","purl":"pkg:deb/debian/graphviz@2.26.3-14?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.26.3-14%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179501?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179499?format=json","purl":"pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b1y3-uuvp-qfcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179503?format=json","purl":"pkg:deb/debian/graphviz@2.42.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/179502?format=json","purl":"pkg:deb/debian/graphviz@14.1.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie"}],"aliases":["CVE-2009-3736"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zrqc-5s44-1kfb"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie"}