{"url":"http://public2.vulnerablecode.io/api/packages/405077?format=json","purl":"pkg:apk/alpine/ghostscript@10.05.0-r0?arch=armv7&distroversion=v3.20&reponame=main","type":"apk","namespace":"alpine","name":"ghostscript","version":"10.05.0-r0","qualifiers":{"arch":"armv7","distroversion":"v3.20","reponame":"main"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"10.05.1-r0","latest_non_vulnerable_version":"10.05.1-r0","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70068?format=json","vulnerability_id":"VCID-5wvm-s3j5-9ufy","summary":"An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device has a Compression buffer overflow for contrib/japanese/gdevnpdl.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27832.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27832.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27832","reference_id":"","reference_type":"","scores":[{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.43767","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.43816","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.43791","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.43757","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.43806","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27832"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354949","reference_id":"2354949","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354949"},{"reference_url":"https://security.gentoo.org/glsa/202508-02","reference_id":"GLSA-202508-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202508-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:21915","reference_id":"RHSA-2025:21915","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:21915"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22869","reference_id":"RHSA-2025:22869","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:22869"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23153","reference_id":"RHSA-2025:23153","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23153"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7586","reference_id":"RHSA-2025:7586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:7586"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7593","reference_id":"RHSA-2025:7593","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:7593"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:8421","reference_id":"RHSA-2025:8421","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:8421"},{"reference_url":"https://bugs.ghostscript.com/show_bug.cgi?id=708133","reference_id":"show_bug.cgi?id=708133","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:39:13Z/"}],"url":"https://bugs.ghostscript.com/show_bug.cgi?id=708133"},{"reference_url":"https://usn.ubuntu.com/7378-1/","reference_id":"USN-7378-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7378-1/"},{"reference_url":"https://usn.ubuntu.com/7623-1/","reference_id":"USN-7623-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7623-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/405077?format=json","purl":"pkg:apk/alpine/ghostscript@10.05.0-r0?arch=armv7&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ghostscript@10.05.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main"}],"aliases":["CVE-2025-27832"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5wvm-s3j5-9ufy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70072?format=json","vulnerability_id":"VCID-9b2s-hfuj-kuhb","summary":"An issue was discovered in Artifex Ghostscript before 10.05.0. The BJ10V device has a Print buffer overflow in contrib/japanese/gdev10v.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27836.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27836.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27836","reference_id":"","reference_type":"","scores":[{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38028","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.3808","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38051","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38017","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38077","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27836"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354952","reference_id":"2354952","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354952"},{"reference_url":"https://security.gentoo.org/glsa/202508-02","reference_id":"GLSA-202508-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202508-02"},{"reference_url":"https://bugs.ghostscript.com/show_bug.cgi?id=708192","reference_id":"show_bug.cgi?id=708192","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:18:16Z/"}],"url":"https://bugs.ghostscript.com/show_bug.cgi?id=708192"},{"reference_url":"https://usn.ubuntu.com/7378-1/","reference_id":"USN-7378-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7378-1/"},{"reference_url":"https://usn.ubuntu.com/7623-1/","reference_id":"USN-7623-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7623-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/405077?format=json","purl":"pkg:apk/alpine/ghostscript@10.05.0-r0?arch=armv7&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ghostscript@10.05.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main"}],"aliases":["CVE-2025-27836"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9b2s-hfuj-kuhb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70069?format=json","vulnerability_id":"VCID-djjg-e546-f7cp","summary":"An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs for a long TTF font name to pdf/pdf_fmap.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27833.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27833.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27833","reference_id":"","reference_type":"","scores":[{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19086","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19179","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19138","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19065","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19182","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27833"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354954","reference_id":"2354954","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354954"},{"reference_url":"https://security.gentoo.org/glsa/202508-02","reference_id":"GLSA-202508-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202508-02"},{"reference_url":"https://bugs.ghostscript.com/show_bug.cgi?id=708259","reference_id":"show_bug.cgi?id=708259","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:36:49Z/"}],"url":"https://bugs.ghostscript.com/show_bug.cgi?id=708259"},{"reference_url":"https://usn.ubuntu.com/7378-1/","reference_id":"USN-7378-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7378-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/405077?format=json","purl":"pkg:apk/alpine/ghostscript@10.05.0-r0?arch=armv7&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ghostscript@10.05.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main"}],"aliases":["CVE-2025-27833"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-djjg-e546-f7cp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70071?format=json","vulnerability_id":"VCID-fk2c-nze6-q3h9","summary":"An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs when converting glyphs to Unicode in psi/zbfont.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27835.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27835.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27835","reference_id":"","reference_type":"","scores":[{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19086","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19179","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19138","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19065","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19182","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27835"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354947","reference_id":"2354947","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354947"},{"reference_url":"https://security.gentoo.org/glsa/202508-02","reference_id":"GLSA-202508-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202508-02"},{"reference_url":"https://bugs.ghostscript.com/show_bug.cgi?id=708131","reference_id":"show_bug.cgi?id=708131","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:36:46Z/"}],"url":"https://bugs.ghostscript.com/show_bug.cgi?id=708131"},{"reference_url":"https://usn.ubuntu.com/7378-1/","reference_id":"USN-7378-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7378-1/"},{"reference_url":"https://usn.ubuntu.com/7623-1/","reference_id":"USN-7623-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7623-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/405077?format=json","purl":"pkg:apk/alpine/ghostscript@10.05.0-r0?arch=armv7&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ghostscript@10.05.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main"}],"aliases":["CVE-2025-27835"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fk2c-nze6-q3h9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70066?format=json","vulnerability_id":"VCID-ht5u-pcj1-n3ee","summary":"An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs during serialization of DollarBlend in a font, for base/write_t1.c and psi/zfapi.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27830.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27830.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27830","reference_id":"","reference_type":"","scores":[{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19086","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19179","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19138","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19065","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00061","scoring_system":"epss","scoring_elements":"0.19182","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27830"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354953","reference_id":"2354953","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354953"},{"reference_url":"https://security.gentoo.org/glsa/202508-02","reference_id":"GLSA-202508-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202508-02"},{"reference_url":"https://bugs.ghostscript.com/show_bug.cgi?id=708241","reference_id":"show_bug.cgi?id=708241","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:36:52Z/"}],"url":"https://bugs.ghostscript.com/show_bug.cgi?id=708241"},{"reference_url":"https://usn.ubuntu.com/7378-1/","reference_id":"USN-7378-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7378-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/405077?format=json","purl":"pkg:apk/alpine/ghostscript@10.05.0-r0?arch=armv7&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ghostscript@10.05.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main"}],"aliases":["CVE-2025-27830"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ht5u-pcj1-n3ee"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70073?format=json","vulnerability_id":"VCID-ms9a-ceur-d3aa","summary":"An issue was discovered in Artifex Ghostscript before 10.05.0. Access to arbitrary files can occur through a truncated path with invalid UTF-8 characters, for base/gp_mswin.c and base/winrtsup.cpp.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27837.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27837.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27837","reference_id":"","reference_type":"","scores":[{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38892","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38896","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38851","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38868","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38841","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27837"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354961","reference_id":"2354961","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354961"},{"reference_url":"https://security.gentoo.org/glsa/202508-02","reference_id":"GLSA-202508-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202508-02"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/405077?format=json","purl":"pkg:apk/alpine/ghostscript@10.05.0-r0?arch=armv7&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ghostscript@10.05.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main"}],"aliases":["CVE-2025-27837"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ms9a-ceur-d3aa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70070?format=json","vulnerability_id":"VCID-n5cf-fjdn-gbaq","summary":"An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs via an oversized Type 4 function in a PDF document to pdf/pdf_func.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27834.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27834.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27834","reference_id":"","reference_type":"","scores":[{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21735","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21831","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21786","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21728","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21843","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27834"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354948","reference_id":"2354948","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354948"},{"reference_url":"https://security.gentoo.org/glsa/202508-02","reference_id":"GLSA-202508-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202508-02"},{"reference_url":"https://bugs.ghostscript.com/show_bug.cgi?id=708253","reference_id":"show_bug.cgi?id=708253","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:36:54Z/"}],"url":"https://bugs.ghostscript.com/show_bug.cgi?id=708253"},{"reference_url":"https://usn.ubuntu.com/7378-1/","reference_id":"USN-7378-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7378-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/405077?format=json","purl":"pkg:apk/alpine/ghostscript@10.05.0-r0?arch=armv7&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ghostscript@10.05.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main"}],"aliases":["CVE-2025-27834"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n5cf-fjdn-gbaq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70067?format=json","vulnerability_id":"VCID-yr2j-x3pp-y3fz","summary":"An issue was discovered in Artifex Ghostscript before 10.05.0. The DOCXWRITE TXTWRITE device has a text buffer overflow via long characters to devices/vector/doc_common.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27831.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27831.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27831","reference_id":"","reference_type":"","scores":[{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38028","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.3808","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38051","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38017","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38077","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27831"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354963","reference_id":"2354963","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2354963"},{"reference_url":"https://security.gentoo.org/glsa/202508-02","reference_id":"GLSA-202508-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202508-02"},{"reference_url":"https://bugs.ghostscript.com/show_bug.cgi?id=708132","reference_id":"show_bug.cgi?id=708132","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:39:16Z/"}],"url":"https://bugs.ghostscript.com/show_bug.cgi?id=708132"},{"reference_url":"https://usn.ubuntu.com/7378-1/","reference_id":"USN-7378-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7378-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/405077?format=json","purl":"pkg:apk/alpine/ghostscript@10.05.0-r0?arch=armv7&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ghostscript@10.05.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main"}],"aliases":["CVE-2025-27831"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yr2j-x3pp-y3fz"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ghostscript@10.05.0-r0%3Farch=armv7&distroversion=v3.20&reponame=main"}