{"url":"http://public2.vulnerablecode.io/api/packages/371223?format=json","purl":"pkg:rpm/redhat/XFree86@4.3.0-69?arch=EL","type":"rpm","namespace":"redhat","name":"XFree86","version":"4.3.0-69","qualifiers":{"arch":"EL"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/227819?format=json","vulnerability_id":"VCID-e6vn-r6c8-a3dv","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0687.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0687.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0687","reference_id":"","reference_type":"","scores":[{"value":"0.2298","scoring_system":"epss","scoring_elements":"0.96028","published_at":"2026-06-11T12:55:00Z"},{"value":"0.2298","scoring_system":"epss","scoring_elements":"0.9604","published_at":"2026-06-12T12:55:00Z"},{"value":"0.2298","scoring_system":"epss","scoring_elements":"0.96042","published_at":"2026-06-13T12:55:00Z"},{"value":"0.2298","scoring_system":"epss","scoring_elements":"0.96045","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0687"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=430513","reference_id":"430513","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=430513"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:478","reference_id":"RHSA-2004:478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:479","reference_id":"RHSA-2004:479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:479"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:537","reference_id":"RHSA-2004:537","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:537"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:004","reference_id":"RHSA-2005:004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:004"},{"reference_url":"https://usn.ubuntu.com/27-1/","reference_id":"USN-27-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/27-1/"}],"fixed_packages":[],"aliases":["CVE-2004-0687"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e6vn-r6c8-a3dv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/227820?format=json","vulnerability_id":"VCID-pmu7-dymk-rfd3","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0688.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0688.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0688","reference_id":"","reference_type":"","scores":[{"value":"0.16728","scoring_system":"epss","scoring_elements":"0.9509","published_at":"2026-06-11T12:55:00Z"},{"value":"0.16728","scoring_system":"epss","scoring_elements":"0.95106","published_at":"2026-06-12T12:55:00Z"},{"value":"0.16728","scoring_system":"epss","scoring_elements":"0.95108","published_at":"2026-06-13T12:55:00Z"},{"value":"0.16728","scoring_system":"epss","scoring_elements":"0.9511","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0688"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=430515","reference_id":"430515","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=430515"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:478","reference_id":"RHSA-2004:478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:479","reference_id":"RHSA-2004:479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:479"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:537","reference_id":"RHSA-2004:537","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:537"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:004","reference_id":"RHSA-2005:004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:004"},{"reference_url":"https://usn.ubuntu.com/27-1/","reference_id":"USN-27-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/27-1/"}],"fixed_packages":[],"aliases":["CVE-2004-0688"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pmu7-dymk-rfd3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219292?format=json","vulnerability_id":"VCID-wd17-1egj-9qc1","summary":"XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0419.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0419.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0419","reference_id":"","reference_type":"","scores":[{"value":"0.02796","scoring_system":"epss","scoring_elements":"0.86421","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02796","scoring_system":"epss","scoring_elements":"0.86472","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02796","scoring_system":"epss","scoring_elements":"0.86482","published_at":"2026-06-13T12:55:00Z"},{"value":"0.02796","scoring_system":"epss","scoring_elements":"0.8648","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0419"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617203","reference_id":"1617203","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:478","reference_id":"RHSA-2004:478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:478"}],"fixed_packages":[],"aliases":["CVE-2004-0419"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wd17-1egj-9qc1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/180347?format=json","vulnerability_id":"VCID-y4s3-qqr6-kbg8","summary":"There are several bugs in Qt's image-handling code which could lead to\n    crashes or arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0692.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0692.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0692","reference_id":"","reference_type":"","scores":[{"value":"0.02235","scoring_system":"epss","scoring_elements":"0.84905","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02235","scoring_system":"epss","scoring_elements":"0.84957","published_at":"2026-06-14T12:55:00Z"},{"value":"0.02235","scoring_system":"epss","scoring_elements":"0.84965","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0692"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617253","reference_id":"1617253","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617253"},{"reference_url":"https://security.gentoo.org/glsa/200408-20","reference_id":"GLSA-200408-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200408-20"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:414","reference_id":"RHSA-2004:414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:478","reference_id":"RHSA-2004:478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:479","reference_id":"RHSA-2004:479","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:479"}],"fixed_packages":[],"aliases":["CVE-2004-0692"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y4s3-qqr6-kbg8"}],"fixing_vulnerabilities":[],"risk_score":"0.1","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/XFree86@4.3.0-69%3Farch=EL"}