{"url":"http://public2.vulnerablecode.io/api/packages/184455?format=json","purl":"pkg:rpm/redhat/libvpx@0.9.0-8?arch=el6_0","type":"rpm","namespace":"redhat","name":"libvpx","version":"0.9.0-8","qualifiers":{"arch":"el6_0"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/77722?format=json","vulnerability_id":"VCID-buer-gzjm-cydr","summary":"WebM libvpx (aka the VP8 Codec SDK) before 0.9.5, as used in Google Chrome before 7.0.517.44, allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via invalid frames.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4203.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4203.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4203","reference_id":"","reference_type":"","scores":[{"value":"0.08115","scoring_system":"epss","scoring_elements":"0.92307","published_at":"2026-06-04T12:55:00Z"},{"value":"0.08115","scoring_system":"epss","scoring_elements":"0.92321","published_at":"2026-06-05T12:55:00Z"},{"value":"0.08115","scoring_system":"epss","scoring_elements":"0.92318","published_at":"2026-06-06T12:55:00Z"},{"value":"0.08115","scoring_system":"epss","scoring_elements":"0.92315","published_at":"2026-06-08T12:55:00Z"},{"value":"0.08115","scoring_system":"epss","scoring_elements":"0.92329","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4203"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4203","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4203"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=602693","reference_id":"602693","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=602693"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=651213","reference_id":"651213","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=651213"},{"reference_url":"https://security.gentoo.org/glsa/201101-03","reference_id":"GLSA-201101-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201101-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0999","reference_id":"RHSA-2010:0999","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0999"},{"reference_url":"https://usn.ubuntu.com/1015-1/","reference_id":"USN-1015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1015-1/"}],"fixed_packages":[],"aliases":["CVE-2010-4203"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-buer-gzjm-cydr"}],"fixing_vulnerabilities":[],"risk_score":"0.1","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libvpx@0.9.0-8%3Farch=el6_0"}