{"url":"http://public2.vulnerablecode.io/api/packages/369373?format=json","purl":"pkg:rpm/redhat/acroread@8.1.3-1?arch=el4","type":"rpm","namespace":"redhat","name":"acroread","version":"8.1.3-1","qualifiers":{"arch":"el4"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/178119?format=json","vulnerability_id":"VCID-1beh-rzm1-qygk","summary":"Adobe Reader is vulnerable to execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4813.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4813.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4813","reference_id":"","reference_type":"","scores":[{"value":"0.29912","scoring_system":"epss","scoring_elements":"0.96765","published_at":"2026-06-11T12:55:00Z"},{"value":"0.29912","scoring_system":"epss","scoring_elements":"0.96775","published_at":"2026-06-12T12:55:00Z"},{"value":"0.29912","scoring_system":"epss","scoring_elements":"0.96776","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4813"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=469876","reference_id":"469876","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=469876"},{"reference_url":"https://security.gentoo.org/glsa/200901-09","reference_id":"GLSA-200901-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200901-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0974","reference_id":"RHSA-2008:0974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0974"}],"fixed_packages":[],"aliases":["CVE-2008-4813"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1beh-rzm1-qygk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/178120?format=json","vulnerability_id":"VCID-1gt7-af63-vuhv","summary":"Adobe Reader is vulnerable to execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4814.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4814.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4814","reference_id":"","reference_type":"","scores":[{"value":"0.47984","scoring_system":"epss","scoring_elements":"0.97788","published_at":"2026-06-11T12:55:00Z"},{"value":"0.47984","scoring_system":"epss","scoring_elements":"0.97797","published_at":"2026-06-12T12:55:00Z"},{"value":"0.47984","scoring_system":"epss","scoring_elements":"0.97799","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4814"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=469880","reference_id":"469880","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=469880"},{"reference_url":"https://security.gentoo.org/glsa/200901-09","reference_id":"GLSA-200901-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200901-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0974","reference_id":"RHSA-2008:0974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0974"}],"fixed_packages":[],"aliases":["CVE-2008-4814"],"risk_score":0.2,"exploitability":"0.5","weighted_severity":"0.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1gt7-af63-vuhv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/178117?format=json","vulnerability_id":"VCID-34ug-8rd5-gqgk","summary":"Adobe Reader is vulnerable to execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2549.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2549.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2549","reference_id":"","reference_type":"","scores":[{"value":"0.71855","scoring_system":"epss","scoring_elements":"0.98759","published_at":"2026-06-11T12:55:00Z"},{"value":"0.71855","scoring_system":"epss","scoring_elements":"0.98763","published_at":"2026-06-12T12:55:00Z"},{"value":"0.71855","scoring_system":"epss","scoring_elements":"0.98765","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2549"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=450078","reference_id":"450078","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=450078"},{"reference_url":"https://security.gentoo.org/glsa/200901-09","reference_id":"GLSA-200901-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200901-09"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/5687.txt","reference_id":"OSVDB-46211;CVE-2008-2549","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/5687.txt"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0974","reference_id":"RHSA-2008:0974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0974"}],"fixed_packages":[],"aliases":["CVE-2008-2549"],"risk_score":1.2,"exploitability":"2.0","weighted_severity":"0.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-34ug-8rd5-gqgk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/178121?format=json","vulnerability_id":"VCID-5e19-aa48-sfdt","summary":"Adobe Reader is vulnerable to execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4815.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4815.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4815","reference_id":"","reference_type":"","scores":[{"value":"0.0824","scoring_system":"epss","scoring_elements":"0.92413","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0824","scoring_system":"epss","scoring_elements":"0.92439","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0824","scoring_system":"epss","scoring_elements":"0.92442","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4815"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=469882","reference_id":"469882","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=469882"},{"reference_url":"https://security.gentoo.org/glsa/200901-09","reference_id":"GLSA-200901-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200901-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0974","reference_id":"RHSA-2008:0974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0974"}],"fixed_packages":[],"aliases":["CVE-2008-4815"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5e19-aa48-sfdt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/178122?format=json","vulnerability_id":"VCID-7gw1-ypr7-27dp","summary":"Adobe Reader is vulnerable to execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4817.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4817.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4817","reference_id":"","reference_type":"","scores":[{"value":"0.31791","scoring_system":"epss","scoring_elements":"0.96916","published_at":"2026-06-11T12:55:00Z"},{"value":"0.31791","scoring_system":"epss","scoring_elements":"0.96926","published_at":"2026-06-12T12:55:00Z"},{"value":"0.31791","scoring_system":"epss","scoring_elements":"0.96929","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4817"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=469923","reference_id":"469923","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=469923"},{"reference_url":"https://security.gentoo.org/glsa/200901-09","reference_id":"GLSA-200901-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200901-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0974","reference_id":"RHSA-2008:0974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0974"}],"fixed_packages":[],"aliases":["CVE-2008-4817"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7gw1-ypr7-27dp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/128184?format=json","vulnerability_id":"VCID-drqy-x5er-pybt","summary":"Stack-based buffer overflow in Adobe Reader and Adobe Acrobat 9 before 9.1, 8 before 8.1.3 , and 7 before 7.1.1 allows remote attackers to execute arbitrary code via a crafted argument to the getIcon method of a Collab object, a different vulnerability than CVE-2009-0658.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0927.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0927.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0927","reference_id":"","reference_type":"","scores":[{"value":"0.93794","scoring_system":"epss","scoring_elements":"0.99867","published_at":"2026-06-11T12:55:00Z"},{"value":"0.93826","scoring_system":"epss","scoring_elements":"0.99873","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0927"},{"reference_url":"http://www.vupen.com/english/advisories/2009/0770","reference_id":"0770","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://www.vupen.com/english/advisories/2009/0770"},{"reference_url":"http://www.vupen.com/english/advisories/2009/1019","reference_id":"1019","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://www.vupen.com/english/advisories/2009/1019"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618340","reference_id":"1618340","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618340"},{"reference_url":"http://www.securityfocus.com/bid/34169","reference_id":"34169","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://www.securityfocus.com/bid/34169"},{"reference_url":"http://secunia.com/advisories/34490","reference_id":"34490","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://secunia.com/advisories/34490"},{"reference_url":"http://secunia.com/advisories/34706","reference_id":"34706","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://secunia.com/advisories/34706"},{"reference_url":"http://secunia.com/advisories/34790","reference_id":"34790","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://secunia.com/advisories/34790"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/49312","reference_id":"49312","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/49312"},{"reference_url":"http://www.exploit-db.com/exploits/9579","reference_id":"9579","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://www.exploit-db.com/exploits/9579"},{"reference_url":"http://www.adobe.com/support/security/bulletins/apsb09-04.html","reference_id":"apsb09-04.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://www.adobe.com/support/security/bulletins/apsb09-04.html"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/9579.py","reference_id":"CVE-2009-0927","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/9579.py"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/16606.rb","reference_id":"CVE-2009-0927;OSVDB-53647","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/16606.rb"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/16681.rb","reference_id":"CVE-2009-0927;OSVDB-53647","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/16681.rb"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/8595.txt","reference_id":"CVE-2009-0927;OSVDB-53647","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/8595.txt"},{"reference_url":"http://www.zerodayinitiative.com/advisories/ZDI-09-014/","reference_id":"CVE-2009-0927;OSVDB-53647","reference_type":"exploit","scores":[],"url":"http://www.zerodayinitiative.com/advisories/ZDI-09-014/"},{"reference_url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-256788-1","reference_id":"document.do?assetkey=1-66-256788-1","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-256788-1"},{"reference_url":"https://security.gentoo.org/glsa/200904-17","reference_id":"GLSA-200904-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200904-17"},{"reference_url":"http://security.gentoo.org/glsa/glsa-200904-17.xml","reference_id":"glsa-200904-17.xml","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://security.gentoo.org/glsa/glsa-200904-17.xml"},{"reference_url":"http://www.securitytracker.com/id?1021861","reference_id":"id?1021861","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://www.securitytracker.com/id?1021861"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html","reference_id":"msg00010.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0974","reference_id":"RHSA-2008:0974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0974"},{"reference_url":"http://www.securityfocus.com/archive/1/502116/100/0/threaded","reference_id":"threaded","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://www.securityfocus.com/archive/1/502116/100/0/threaded"},{"reference_url":"http://www.zerodayinitiative.com/advisories/ZDI-09-014","reference_id":"ZDI-09-014","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:59:29Z/"}],"url":"http://www.zerodayinitiative.com/advisories/ZDI-09-014"}],"fixed_packages":[],"aliases":["CVE-2009-0927"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-drqy-x5er-pybt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/178118?format=json","vulnerability_id":"VCID-pj6w-jsx5-jyg9","summary":"Adobe Reader is vulnerable to execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4812.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4812.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4812","reference_id":"","reference_type":"","scores":[{"value":"0.42782","scoring_system":"epss","scoring_elements":"0.97562","published_at":"2026-06-11T12:55:00Z"},{"value":"0.42782","scoring_system":"epss","scoring_elements":"0.97571","published_at":"2026-06-12T12:55:00Z"},{"value":"0.42782","scoring_system":"epss","scoring_elements":"0.97572","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-4812"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=469875","reference_id":"469875","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=469875"},{"reference_url":"https://security.gentoo.org/glsa/200901-09","reference_id":"GLSA-200901-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200901-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0974","reference_id":"RHSA-2008:0974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0974"}],"fixed_packages":[],"aliases":["CVE-2008-4812"],"risk_score":0.2,"exploitability":"0.5","weighted_severity":"0.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pj6w-jsx5-jyg9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/87520?format=json","vulnerability_id":"VCID-qvut-4qwc-j7bs","summary":"Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers to execute arbitrary code via a PDF file that calls the util.printf JavaScript function with a crafted format string argument, a related issue to CVE-2008-1104.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2992.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2992.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2992","reference_id":"","reference_type":"","scores":[{"value":"0.93738","scoring_system":"epss","scoring_elements":"0.99862","published_at":"2026-06-13T12:55:00Z"},{"value":"0.93738","scoring_system":"epss","scoring_elements":"0.99861","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2992"},{"reference_url":"http://www.vupen.com/english/advisories/2009/0098","reference_id":"0098","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.vupen.com/english/advisories/2009/0098"},{"reference_url":"http://download.oracle.com/sunalerts/1019937.1.html","reference_id":"1019937.1.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://download.oracle.com/sunalerts/1019937.1.html"},{"reference_url":"http://secunia.com/secunia_research/2008-14/","reference_id":"2008-14","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://secunia.com/secunia_research/2008-14/"},{"reference_url":"http://secunia.com/advisories/29773","reference_id":"29773","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://secunia.com/advisories/29773"},{"reference_url":"http://www.vupen.com/english/advisories/2008/3001","reference_id":"3001","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.vupen.com/english/advisories/2008/3001"},{"reference_url":"http://www.securityfocus.com/bid/30035","reference_id":"30035","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.securityfocus.com/bid/30035"},{"reference_url":"http://www.securityfocus.com/bid/32091","reference_id":"32091","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.securityfocus.com/bid/32091"},{"reference_url":"http://secunia.com/advisories/32700","reference_id":"32700","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://secunia.com/advisories/32700"},{"reference_url":"http://secunia.com/advisories/32872","reference_id":"32872","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://secunia.com/advisories/32872"},{"reference_url":"http://secunia.com/advisories/35163","reference_id":"35163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://secunia.com/advisories/35163"},{"reference_url":"http://securityreason.com/securityalert/4549","reference_id":"4549","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://securityreason.com/securityalert/4549"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=469877","reference_id":"469877","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=469877"},{"reference_url":"http://osvdb.org/49520","reference_id":"49520","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://osvdb.org/49520"},{"reference_url":"http://www.kb.cert.org/vuls/id/593409","reference_id":"593409","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.kb.cert.org/vuls/id/593409"},{"reference_url":"https://www.exploit-db.com/exploits/6994","reference_id":"6994","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"https://www.exploit-db.com/exploits/6994"},{"reference_url":"https://www.exploit-db.com/exploits/7006","reference_id":"7006","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"https://www.exploit-db.com/exploits/7006"},{"reference_url":"http://www.coresecurity.com/content/adobe-reader-buffer-overflow","reference_id":"adobe-reader-buffer-overflow","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.coresecurity.com/content/adobe-reader-buffer-overflow"},{"reference_url":"http://www.adobe.com/support/security/bulletins/apsb08-19.html","reference_id":"apsb08-19.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.adobe.com/support/security/bulletins/apsb08-19.html"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/16504.rb","reference_id":"CVE-2008-2992;OSVDB-49520","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/16504.rb"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/16624.rb","reference_id":"CVE-2008-2992;OSVDB-49520","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/16624.rb"},{"reference_url":"https://security.gentoo.org/glsa/200901-09","reference_id":"GLSA-200901-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200901-09"},{"reference_url":"http://www.securitytracker.com/id?1021140","reference_id":"id?1021140","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.securitytracker.com/id?1021140"},{"reference_url":"http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=800801","reference_id":"main.jsp?cscat=BLTNDETAIL&id=800801","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=800801"},{"reference_url":"http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=909609","reference_id":"main.jsp?cscat=BLTNDETAIL&id=909609","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=909609"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html","reference_id":"msg00002.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/6994.txt","reference_id":"OSVDB-49520;CVE-2008-2992","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/6994.txt"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/7006.txt","reference_id":"OSVDB-49520;CVE-2008-2992","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/7006.txt"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0974","reference_id":"RHSA-2008:0974","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0974"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2008-0974.html","reference_id":"RHSA-2008-0974.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.redhat.com/support/errata/RHSA-2008-0974.html"},{"reference_url":"http://www.us-cert.gov/cas/techalerts/TA08-309A.html","reference_id":"TA08-309A.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.us-cert.gov/cas/techalerts/TA08-309A.html"},{"reference_url":"http://www.securityfocus.com/archive/1/498027/100/0/threaded","reference_id":"threaded","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.securityfocus.com/archive/1/498027/100/0/threaded"},{"reference_url":"http://www.securityfocus.com/archive/1/498032/100/0/threaded","reference_id":"threaded","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.securityfocus.com/archive/1/498032/100/0/threaded"},{"reference_url":"http://www.securityfocus.com/archive/1/498055/100/0/threaded","reference_id":"threaded","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.securityfocus.com/archive/1/498055/100/0/threaded"},{"reference_url":"http://www.zerodayinitiative.com/advisories/ZDI-08-072/","reference_id":"ZDI-08-072","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-10T19:27:56Z/"}],"url":"http://www.zerodayinitiative.com/advisories/ZDI-08-072/"}],"fixed_packages":[],"aliases":["CVE-2008-2992"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qvut-4qwc-j7bs"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/acroread@8.1.3-1%3Farch=el4"}