{"url":"http://public2.vulnerablecode.io/api/packages/4060?format=json","purl":"pkg:deb/debian/tiff@3.7.2-7","type":"deb","namespace":"debian","name":"tiff","version":"3.7.2-7","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"4.1.0+git191117-2~deb10u4","latest_non_vulnerable_version":"4.1.0+git191117-2~deb10u4","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4746?format=json","vulnerability_id":"VCID-13fq-85pm-9ucx","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3623.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3623.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3623","reference_id":"","reference_type":"","scores":[{"value":"0.02534","scoring_system":"epss","scoring_elements":"0.85723","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325089","reference_id":"1325089","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325089"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3623"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-13fq-85pm-9ucx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4708?format=json","vulnerability_id":"VCID-19y7-v51n-pfa5","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7554.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7554.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7554","reference_id":"","reference_type":"","scores":[{"value":"0.01587","scoring_system":"epss","scoring_elements":"0.81955","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7554"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7554","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7554"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1294417","reference_id":"1294417","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1294417"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809066","reference_id":"809066","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809066"},{"reference_url":"https://security.archlinux.org/ASA-201707-17","reference_id":"ASA-201707-17","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201707-17"},{"reference_url":"https://security.archlinux.org/ASA-201707-18","reference_id":"ASA-201707-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201707-18"},{"reference_url":"https://security.archlinux.org/AVG-5","reference_id":"AVG-5","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-5"},{"reference_url":"https://security.archlinux.org/AVG-87","reference_id":"AVG-87","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-87"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2015-7554"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-19y7-v51n-pfa5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102758?format=json","vulnerability_id":"VCID-2fkp-y8v2-hqck","summary":"tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds writes) via a crafted TIFF image, a different vulnerability than CVE-2015-8781.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8782.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8782.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8782","reference_id":"","reference_type":"","scores":[{"value":"0.01053","scoring_system":"epss","scoring_elements":"0.7791","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1301649","reference_id":"1301649","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1301649"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2015-8782"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2fkp-y8v2-hqck"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4736?format=json","vulnerability_id":"VCID-346w-g3br-qyfj","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3991.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3991.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3991","reference_id":"","reference_type":"","scores":[{"value":"0.00444","scoring_system":"epss","scoring_elements":"0.63679","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326249","reference_id":"1326249","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326249"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3991"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-346w-g3br-qyfj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4717?format=json","vulnerability_id":"VCID-4gq3-smes-y3ej","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9532.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9532.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9532","reference_id":"","reference_type":"","scores":[{"value":"0.00585","scoring_system":"epss","scoring_elements":"0.69444","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397726","reference_id":"1397726","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397726"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844057","reference_id":"844057","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844057"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9532"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4gq3-smes-y3ej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4714?format=json","vulnerability_id":"VCID-5bpk-63mp-myea","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9535.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9535.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9535","reference_id":"","reference_type":"","scores":[{"value":"0.00604","scoring_system":"epss","scoring_elements":"0.69974","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9535"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397755","reference_id":"1397755","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397755"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0225","reference_id":"RHSA-2017:0225","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0225"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9535"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5bpk-63mp-myea"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6204?format=json","vulnerability_id":"VCID-631h-1ukc-2kbr","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8905.json","reference_id":"","reference_type":"","scores":[{"value":"4.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8905.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8905","reference_id":"","reference_type":"","scores":[{"value":"0.00642","scoring_system":"epss","scoring_elements":"0.71013","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-8905"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1559704","reference_id":"1559704","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1559704"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893806","reference_id":"893806","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893806"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"},{"reference_url":"https://security.archlinux.org/AVG-813","reference_id":"AVG-813","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-813"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2053","reference_id":"RHSA-2019:2053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2053"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2018-8905"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-631h-1ukc-2kbr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6205?format=json","vulnerability_id":"VCID-6bqr-yf8y-xba6","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7456.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7456.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7456","reference_id":"","reference_type":"","scores":[{"value":"0.00689","scoring_system":"epss","scoring_elements":"0.72151","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7456"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1556708","reference_id":"1556708","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1556708"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891288","reference_id":"891288","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891288"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"},{"reference_url":"https://security.archlinux.org/AVG-813","reference_id":"AVG-813","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-813"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2051","reference_id":"RHSA-2019:2051","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2053","reference_id":"RHSA-2019:2053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2053"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2018-7456"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6bqr-yf8y-xba6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4756?format=json","vulnerability_id":"VCID-6f7j-jffy-g3h1","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8130.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8130.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8130","reference_id":"","reference_type":"","scores":[{"value":"0.02075","scoring_system":"epss","scoring_elements":"0.84274","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8130"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8130","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8130"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1185817","reference_id":"1185817","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1185817"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185","reference_id":"776185","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2014-8130"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6f7j-jffy-g3h1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4734?format=json","vulnerability_id":"VCID-6j88-9v6m-aqaa","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5314.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5314.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5314","reference_id":"","reference_type":"","scores":[{"value":"0.01026","scoring_system":"epss","scoring_elements":"0.77631","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346697","reference_id":"1346697","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346697"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700","reference_id":"830700","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5314"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6j88-9v6m-aqaa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6220?format=json","vulnerability_id":"VCID-6vbx-9hme-ckgy","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18557.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18557.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-18557","reference_id":"","reference_type":"","scores":[{"value":"0.23568","scoring_system":"epss","scoring_elements":"0.96082","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-18557"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1644229","reference_id":"1644229","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1644229"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911635","reference_id":"911635","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911635"},{"reference_url":"https://security.archlinux.org/ASA-201811-17","reference_id":"ASA-201811-17","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-17"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-790","reference_id":"AVG-790","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-790"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"},{"reference_url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=1697","reference_id":"CVE-2018-18557","reference_type":"exploit","scores":[],"url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=1697"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/45694.c","reference_id":"CVE-2018-18557","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/45694.c"},{"reference_url":"https://security.gentoo.org/glsa/201904-15","reference_id":"GLSA-201904-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201904-15"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2053","reference_id":"RHSA-2019:2053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2053"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2018-18557"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6vbx-9hme-ckgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6219?format=json","vulnerability_id":"VCID-7fq4-rz4j-nye3","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18661.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18661.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-18661","reference_id":"","reference_type":"","scores":[{"value":"0.00185","scoring_system":"epss","scoring_elements":"0.39977","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-18661"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1644448","reference_id":"1644448","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1644448"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912012","reference_id":"912012","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912012"},{"reference_url":"https://security.archlinux.org/ASA-201811-17","reference_id":"ASA-201811-17","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-17"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-790","reference_id":"AVG-790","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-790"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2053","reference_id":"RHSA-2019:2053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2053"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2018-18661"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7fq4-rz4j-nye3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4748?format=json","vulnerability_id":"VCID-8t9a-wr15-s3gj","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3621.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3621.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3621","reference_id":"","reference_type":"","scores":[{"value":"0.00676","scoring_system":"epss","scoring_elements":"0.71873","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3621"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3621","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3621"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1324822","reference_id":"1324822","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1324822"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820364","reference_id":"820364","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820364"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3621"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8t9a-wr15-s3gj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4923?format=json","vulnerability_id":"VCID-9fb5-82gn-c7em","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0909.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0909.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0909","reference_id":"","reference_type":"","scores":[{"value":"0.00203","scoring_system":"epss","scoring_elements":"0.42329","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/393","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/393"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/310","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/310"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064146","reference_id":"2064146","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064146"},{"reference_url":"https://security.archlinux.org/ASA-202204-6","reference_id":"ASA-202204-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-6"},{"reference_url":"https://security.archlinux.org/AVG-2658","reference_id":"AVG-2658","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2658"},{"reference_url":"https://security.archlinux.org/AVG-2659","reference_id":"AVG-2659","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2659"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0909","reference_id":"CVE-2022-0909","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0909"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0909.json","reference_id":"CVE-2022-0909.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0909.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7585","reference_id":"RHSA-2022:7585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8194","reference_id":"RHSA-2022:8194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8194"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2022-0909"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9fb5-82gn-c7em"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102759?format=json","vulnerability_id":"VCID-9ufr-s5hf-j3bg","summary":"tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds reads) via a crafted TIFF image.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8783.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8783.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8783","reference_id":"","reference_type":"","scores":[{"value":"0.00441","scoring_system":"epss","scoring_elements":"0.6355","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8783"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1301649","reference_id":"1301649","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1301649"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"}],"aliases":["CVE-2015-8783"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9ufr-s5hf-j3bg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4716?format=json","vulnerability_id":"VCID-ajjg-j3u3-87hb","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9533.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9533.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9533","reference_id":"","reference_type":"","scores":[{"value":"0.00224","scoring_system":"epss","scoring_elements":"0.45092","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397769","reference_id":"1397769","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397769"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0225","reference_id":"RHSA-2017:0225","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0225"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9533"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ajjg-j3u3-87hb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4735?format=json","vulnerability_id":"VCID-aqsc-pckt-8kb6","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5102.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5102.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5102","reference_id":"","reference_type":"","scores":[{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69911","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5102"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1343407","reference_id":"1343407","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1343407"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5102"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-aqsc-pckt-8kb6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4926?format=json","vulnerability_id":"VCID-b1uw-w9nk-v3ht","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0891.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0891.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0891","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08582","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844"},{"reference_url":"https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/380","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/380"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/382","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/382"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064411","reference_id":"2064411","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064411"},{"reference_url":"https://security.archlinux.org/ASA-202204-6","reference_id":"ASA-202204-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-6"},{"reference_url":"https://security.archlinux.org/AVG-2658","reference_id":"AVG-2658","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2658"},{"reference_url":"https://security.archlinux.org/AVG-2659","reference_id":"AVG-2659","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2659"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0891","reference_id":"CVE-2022-0891","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0891"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json","reference_id":"CVE-2022-0891.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7585","reference_id":"RHSA-2022:7585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8194","reference_id":"RHSA-2022:8194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8194"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2022-0891"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b1uw-w9nk-v3ht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102794?format=json","vulnerability_id":"VCID-bg9z-zm7j-8kdh","summary":"LibTIFF 4.0.7 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7602.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7602.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7602","reference_id":"","reference_type":"","scores":[{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52104","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7602"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1441263","reference_id":"1441263","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1441263"},{"reference_url":"https://security.archlinux.org/ASA-201704-10","reference_id":"ASA-201704-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201704-10"},{"reference_url":"https://security.archlinux.org/AVG-237","reference_id":"AVG-237","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-237"},{"reference_url":"https://security.archlinux.org/AVG-817","reference_id":"AVG-817","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-817"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"}],"aliases":["CVE-2017-7602"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bg9z-zm7j-8kdh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4752?format=json","vulnerability_id":"VCID-bmhd-pxe4-5kg3","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8683.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8683.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8683","reference_id":"","reference_type":"","scores":[{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43112","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8683"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1294427","reference_id":"1294427","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1294427"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809021","reference_id":"809021","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809021"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2015-8683"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bmhd-pxe4-5kg3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4745?format=json","vulnerability_id":"VCID-d1v8-kg4j-ayek","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3624.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3624.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3624","reference_id":"","reference_type":"","scores":[{"value":"0.01325","scoring_system":"epss","scoring_elements":"0.80247","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325090","reference_id":"1325090","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325090"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3624"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d1v8-kg4j-ayek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4733?format=json","vulnerability_id":"VCID-dbtw-xgms-g7a1","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5315.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5315.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5315","reference_id":"","reference_type":"","scores":[{"value":"0.00176","scoring_system":"epss","scoring_elements":"0.38849","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346694","reference_id":"1346694","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346694"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700","reference_id":"830700","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5315"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dbtw-xgms-g7a1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4750?format=json","vulnerability_id":"VCID-dyvz-88n7-aug5","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3619.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3619.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3619","reference_id":"","reference_type":"","scores":[{"value":"0.00955","scoring_system":"epss","scoring_elements":"0.76778","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3619"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1316569","reference_id":"1316569","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1316569"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820362","reference_id":"820362","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820362"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3619"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dyvz-88n7-aug5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102746?format=json","vulnerability_id":"VCID-e2fw-bbeg-3qby","summary":"Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length and resolution in a TIFF image file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1961.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1961.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1961","reference_id":"","reference_type":"","scores":[{"value":"0.01867","scoring_system":"epss","scoring_elements":"0.83439","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1961"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706674","reference_id":"706674","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706674"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952131","reference_id":"952131","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952131"},{"reference_url":"https://security.gentoo.org/glsa/201402-21","reference_id":"GLSA-201402-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201402-21"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0222","reference_id":"RHSA-2014:0222","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0222"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0223","reference_id":"RHSA-2014:0223","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0223"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2013-1961"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e2fw-bbeg-3qby"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4709?format=json","vulnerability_id":"VCID-eane-ev3e-93d3","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9540.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9540.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9540","reference_id":"","reference_type":"","scores":[{"value":"0.00419","scoring_system":"epss","scoring_elements":"0.62196","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9540"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397768","reference_id":"1397768","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397768"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0225","reference_id":"RHSA-2017:0225","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0225"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9540"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-eane-ev3e-93d3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4729?format=json","vulnerability_id":"VCID-eaxr-tudk-jfff","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5319.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5319.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5319","reference_id":"","reference_type":"","scores":[{"value":"0.00877","scoring_system":"epss","scoring_elements":"0.75654","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5319"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5319","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5319"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1344069","reference_id":"1344069","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1344069"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046","reference_id":"842046","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5319"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-eaxr-tudk-jfff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6206?format=json","vulnerability_id":"VCID-ehrs-qbcg-z3e1","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5784.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5784.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-5784","reference_id":"","reference_type":"","scores":[{"value":"0.00368","scoring_system":"epss","scoring_elements":"0.59059","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-5784"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1537740","reference_id":"1537740","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1537740"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890441","reference_id":"890441","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890441"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"},{"reference_url":"https://security.archlinux.org/AVG-813","reference_id":"AVG-813","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-813"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2018-5784"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ehrs-qbcg-z3e1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4742?format=json","vulnerability_id":"VCID-enmp-vfzt-ubdn","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3632.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3632.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3632","reference_id":"","reference_type":"","scores":[{"value":"0.00513","scoring_system":"epss","scoring_elements":"0.66912","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3632"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3632","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3632"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325095","reference_id":"1325095","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325095"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3632"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-enmp-vfzt-ubdn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4740?format=json","vulnerability_id":"VCID-evq9-mjww-1qdk","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3634.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3634.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3634","reference_id":"","reference_type":"","scores":[{"value":"0.00693","scoring_system":"epss","scoring_elements":"0.72246","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3634"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3634","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3634"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326267","reference_id":"1326267","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326267"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3634"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-evq9-mjww-1qdk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4751?format=json","vulnerability_id":"VCID-eys7-uqtb-k3hf","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3186.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3186.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3186","reference_id":"","reference_type":"","scores":[{"value":"0.00733","scoring_system":"epss","scoring_elements":"0.73111","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3186"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1319666","reference_id":"1319666","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1319666"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819972","reference_id":"819972","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819972"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2053","reference_id":"RHSA-2019:2053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2053"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3186"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-eys7-uqtb-k3hf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4711?format=json","vulnerability_id":"VCID-f79u-ccnn-fkb2","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9538.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9538.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9538","reference_id":"","reference_type":"","scores":[{"value":"0.00416","scoring_system":"epss","scoring_elements":"0.62059","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397765","reference_id":"1397765","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397765"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9538"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f79u-ccnn-fkb2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102768?format=json","vulnerability_id":"VCID-f9ny-geg2-ebdy","summary":"LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6 and 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to \"READ of size 512\" and libtiff/tif_unix.c:340:2.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10269.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10269.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-10269","reference_id":"","reference_type":"","scores":[{"value":"0.0066","scoring_system":"epss","scoring_elements":"0.71479","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-10269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1438443","reference_id":"1438443","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1438443"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"}],"aliases":["CVE-2016-10269"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f9ny-geg2-ebdy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102747?format=json","vulnerability_id":"VCID-faz2-7zdq-w3fb","summary":"Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) extension block in a GIF image or (2) GIF raster image to tools/gif2tiff.c or (3) a long filename for a TIFF image to tools/rgb2ycbcr.c.  NOTE: vectors 1 and 3 are disputed by Red Hat, which states that the input cannot exceed the allocated buffer size.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4231.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4231.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4231","reference_id":"","reference_type":"","scores":[{"value":"0.18385","scoring_system":"epss","scoring_elements":"0.95353","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4231"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303","reference_id":"719303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=995965","reference_id":"995965","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=995965"},{"reference_url":"https://security.gentoo.org/glsa/201402-21","reference_id":"GLSA-201402-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201402-21"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0222","reference_id":"RHSA-2014:0222","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0222"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0223","reference_id":"RHSA-2014:0223","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0223"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2013-4231"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-faz2-7zdq-w3fb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4928?format=json","vulnerability_id":"VCID-gh3j-c1nj-sfby","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0562.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0562.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0562","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10645","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844"},{"reference_url":"https://gitlab.com/gitlab-org/build/omnibus-mirror/libtiff/-/commit/561599c99f987dc32ae110370cfdd7df7975586b","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/build/omnibus-mirror/libtiff/-/commit/561599c99f987dc32ae110370cfdd7df7975586b"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/362","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/362"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2054495","reference_id":"2054495","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2054495"},{"reference_url":"https://security.archlinux.org/ASA-202204-6","reference_id":"ASA-202204-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-6"},{"reference_url":"https://security.archlinux.org/AVG-2658","reference_id":"AVG-2658","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2658"},{"reference_url":"https://security.archlinux.org/AVG-2659","reference_id":"AVG-2659","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2659"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0562","reference_id":"CVE-2022-0562","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0562"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0562.json","reference_id":"CVE-2022-0562.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0562.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7585","reference_id":"RHSA-2022:7585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8194","reference_id":"RHSA-2022:8194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8194"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2022-0562"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gh3j-c1nj-sfby"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102757?format=json","vulnerability_id":"VCID-gnkb-u976-3qaw","summary":"tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds write) via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE-2015-8782.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8781.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8781.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8781","reference_id":"","reference_type":"","scores":[{"value":"0.01417","scoring_system":"epss","scoring_elements":"0.80906","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1301649","reference_id":"1301649","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1301649"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2015-8781"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gnkb-u976-3qaw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4732?format=json","vulnerability_id":"VCID-gpud-pv1v-67c1","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5316.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5316.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5316","reference_id":"","reference_type":"","scores":[{"value":"0.00683","scoring_system":"epss","scoring_elements":"0.72044","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346690","reference_id":"1346690","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346690"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700","reference_id":"830700","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5316"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gpud-pv1v-67c1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4755?format=json","vulnerability_id":"VCID-gr1x-z5t8-j3eh","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7313.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7313.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7313","reference_id":"","reference_type":"","scores":[{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32379","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7313"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7313","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7313"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1265998","reference_id":"1265998","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1265998"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=800124","reference_id":"800124","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=800124"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2015-7313"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gr1x-z5t8-j3eh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4720?format=json","vulnerability_id":"VCID-h17a-js2a-x7dh","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9297.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9297.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9297","reference_id":"","reference_type":"","scores":[{"value":"0.00352","scoring_system":"epss","scoring_elements":"0.57876","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1395264","reference_id":"1395264","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1395264"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844226","reference_id":"844226","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844226"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9297"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h17a-js2a-x7dh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4718?format=json","vulnerability_id":"VCID-h9nx-bv3h-dyev","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9453.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9453.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9453","reference_id":"","reference_type":"","scores":[{"value":"0.00294","scoring_system":"epss","scoring_elements":"0.53007","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397723","reference_id":"1397723","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397723"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9453"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h9nx-bv3h-dyev"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102751?format=json","vulnerability_id":"VCID-hac2-vcxa-cffp","summary":"LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8128.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8128.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8128","reference_id":"","reference_type":"","scores":[{"value":"0.00994","scoring_system":"epss","scoring_elements":"0.77278","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8128"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1185812","reference_id":"1185812","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1185812"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185","reference_id":"776185","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2014-8128"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hac2-vcxa-cffp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4921?format=json","vulnerability_id":"VCID-hbjb-er6u-37dz","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22844.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22844.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-22844","reference_id":"","reference_type":"","scores":[{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19422","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-22844"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/355","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/355"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/287","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/287"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2042603","reference_id":"2042603","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2042603"},{"reference_url":"https://security.archlinux.org/ASA-202204-6","reference_id":"ASA-202204-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-6"},{"reference_url":"https://security.archlinux.org/AVG-2658","reference_id":"AVG-2658","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2658"},{"reference_url":"https://security.archlinux.org/AVG-2659","reference_id":"AVG-2659","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2659"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22844","reference_id":"CVE-2022-22844","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22844"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7585","reference_id":"RHSA-2022:7585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8194","reference_id":"RHSA-2022:8194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8194"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2022-22844"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hbjb-er6u-37dz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4715?format=json","vulnerability_id":"VCID-hep7-wa9u-ybbb","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9534.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9534.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9534","reference_id":"","reference_type":"","scores":[{"value":"0.00448","scoring_system":"epss","scoring_elements":"0.63863","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397751","reference_id":"1397751","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397751"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0225","reference_id":"RHSA-2017:0225","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0225"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9534"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hep7-wa9u-ybbb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102785?format=json","vulnerability_id":"VCID-hv4a-w9rs-4fg4","summary":"tif_read.c in LibTIFF 4.0.7 does not ensure that tif_rawdata is properly initialized, which might allow remote attackers to obtain sensitive information from process memory via a crafted image.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7593.json","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7593.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7593","reference_id":"","reference_type":"","scores":[{"value":"0.00227","scoring_system":"epss","scoring_elements":"0.45563","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1441246","reference_id":"1441246","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1441246"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860000","reference_id":"860000","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860000"},{"reference_url":"https://security.archlinux.org/ASA-201704-10","reference_id":"ASA-201704-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201704-10"},{"reference_url":"https://security.archlinux.org/AVG-237","reference_id":"AVG-237","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-237"},{"reference_url":"https://security.archlinux.org/AVG-817","reference_id":"AVG-817","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-817"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"}],"aliases":["CVE-2017-7593"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hv4a-w9rs-4fg4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102748?format=json","vulnerability_id":"VCID-j7gx-b3sq-hqap","summary":"Use-after-free vulnerability in the t2p_readwrite_pdf_image function in tools/tiff2pdf.c in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted TIFF image.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4232.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4232.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4232","reference_id":"","reference_type":"","scores":[{"value":"0.01331","scoring_system":"epss","scoring_elements":"0.80287","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303","reference_id":"719303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719303"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=995975","reference_id":"995975","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=995975"},{"reference_url":"https://security.gentoo.org/glsa/201402-21","reference_id":"GLSA-201402-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201402-21"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0222","reference_id":"RHSA-2014:0222","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0222"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0223","reference_id":"RHSA-2014:0223","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0223"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2013-4232"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j7gx-b3sq-hqap"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4744?format=json","vulnerability_id":"VCID-j812-5e7u-77gj","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3625.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3625.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3625","reference_id":"","reference_type":"","scores":[{"value":"0.00339","scoring_system":"epss","scoring_elements":"0.56915","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3625"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3625","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3625"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325091","reference_id":"1325091","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325091"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4151?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3"}],"aliases":["CVE-2016-3625"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j812-5e7u-77gj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4927?format=json","vulnerability_id":"VCID-jm7h-py2k-c7ha","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0865.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0865.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0865","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10773","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/385","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/385"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/306","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/306"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064406","reference_id":"2064406","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064406"},{"reference_url":"https://security.archlinux.org/ASA-202204-6","reference_id":"ASA-202204-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-6"},{"reference_url":"https://security.archlinux.org/AVG-2658","reference_id":"AVG-2658","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2658"},{"reference_url":"https://security.archlinux.org/AVG-2659","reference_id":"AVG-2659","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2659"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0865","reference_id":"CVE-2022-0865","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0865"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0865.json","reference_id":"CVE-2022-0865.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0865.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7585","reference_id":"RHSA-2022:7585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8194","reference_id":"RHSA-2022:8194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8194"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2022-0865"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jm7h-py2k-c7ha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4741?format=json","vulnerability_id":"VCID-jpk4-8v2b-tkd3","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3633.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3633.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3633","reference_id":"","reference_type":"","scores":[{"value":"0.00452","scoring_system":"epss","scoring_elements":"0.64076","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3633"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3633","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3633"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326255","reference_id":"1326255","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326255"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046","reference_id":"842046","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3633"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jpk4-8v2b-tkd3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4713?format=json","vulnerability_id":"VCID-k5c9-5xnv-57f7","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9536.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9536.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9536","reference_id":"","reference_type":"","scores":[{"value":"0.00416","scoring_system":"epss","scoring_elements":"0.62059","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397758","reference_id":"1397758","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397758"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0225","reference_id":"RHSA-2017:0225","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0225"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9536"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k5c9-5xnv-57f7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4754?format=json","vulnerability_id":"VCID-kucf-4yqt-3fbg","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8665.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8665.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8665","reference_id":"","reference_type":"","scores":[{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43224","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8665"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1294444","reference_id":"1294444","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1294444"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=808968","reference_id":"808968","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=808968"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2015-8665"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kucf-4yqt-3fbg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102753?format=json","vulnerability_id":"VCID-m2ga-kxun-8qf3","summary":"Integer overflow in tif_packbits.c in bmp2tif in libtiff 4.0.3 allows remote attackers to cause a denial of service (crash) via crafted BMP image, related to dimensions, which triggers an out-of-bounds read.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9330.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9330.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9330","reference_id":"","reference_type":"","scores":[{"value":"0.01351","scoring_system":"epss","scoring_elements":"0.80431","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9330"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1177893","reference_id":"1177893","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1177893"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773987","reference_id":"773987","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773987"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2014-9330"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m2ga-kxun-8qf3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4753?format=json","vulnerability_id":"VCID-ma1y-1jua-3bhz","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8668.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8668.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8668","reference_id":"","reference_type":"","scores":[{"value":"0.0671","scoring_system":"epss","scoring_elements":"0.91416","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8668"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8668","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8668"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1294425","reference_id":"1294425","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1294425"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046","reference_id":"842046","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842046"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2015-8668"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ma1y-1jua-3bhz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4730?format=json","vulnerability_id":"VCID-n1yd-y1ur-cqgx","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5318.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5318.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5318","reference_id":"","reference_type":"","scores":[{"value":"0.01036","scoring_system":"epss","scoring_elements":"0.77728","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5318"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5318","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5318"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1344068","reference_id":"1344068","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1344068"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5318"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n1yd-y1ur-cqgx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102760?format=json","vulnerability_id":"VCID-nezb-t4bq-jbav","summary":"The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image, as demonstrated by libtiff5.tif.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8784.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8784.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8784","reference_id":"","reference_type":"","scores":[{"value":"0.00896","scoring_system":"epss","scoring_elements":"0.75993","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-8784"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8665"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8683"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8783"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8784"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1301652","reference_id":"1301652","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1301652"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2015-8784"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nezb-t4bq-jbav"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4929?format=json","vulnerability_id":"VCID-nrc9-7pss-6bgh","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0561.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0561.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0561","reference_id":"","reference_type":"","scores":[{"value":"0.00059","scoring_system":"epss","scoring_elements":"0.18677","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844"},{"reference_url":"https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/eecb0712f4c3a5b449f70c57988260a667ddbdef","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/eecb0712f4c3a5b449f70c57988260a667ddbdef"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/362","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/362"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2054494","reference_id":"2054494","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2054494"},{"reference_url":"https://security.archlinux.org/ASA-202204-6","reference_id":"ASA-202204-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-6"},{"reference_url":"https://security.archlinux.org/AVG-2658","reference_id":"AVG-2658","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2658"},{"reference_url":"https://security.archlinux.org/AVG-2659","reference_id":"AVG-2659","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2659"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0561","reference_id":"CVE-2022-0561","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0561"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0561.json","reference_id":"CVE-2022-0561.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0561.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7585","reference_id":"RHSA-2022:7585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8194","reference_id":"RHSA-2022:8194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8194"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2022-0561"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nrc9-7pss-6bgh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4710?format=json","vulnerability_id":"VCID-nubb-rk2q-z3de","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9539.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9539.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9539","reference_id":"","reference_type":"","scores":[{"value":"0.00416","scoring_system":"epss","scoring_elements":"0.62059","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9539"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9539","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9539"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397767","reference_id":"1397767","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397767"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9539"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nubb-rk2q-z3de"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6223?format=json","vulnerability_id":"VCID-nvzg-8vh5-m3fy","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11613.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11613.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-11613","reference_id":"","reference_type":"","scores":[{"value":"0.00548","scoring_system":"epss","scoring_elements":"0.68261","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-11613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1475530","reference_id":"1475530","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1475530"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869823","reference_id":"869823","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869823"},{"reference_url":"https://security.archlinux.org/ASA-201811-17","reference_id":"ASA-201811-17","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-17"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-790","reference_id":"AVG-790","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-790"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2017-11613"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nvzg-8vh5-m3fy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102744?format=json","vulnerability_id":"VCID-p4dr-ub7s-3ybv","summary":"Heap-based buffer overflow in the t2p_process_jpeg_strip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1960.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1960.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1960","reference_id":"","reference_type":"","scores":[{"value":"0.04531","scoring_system":"epss","scoring_elements":"0.89353","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1960"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1960"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1961"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706675","reference_id":"706675","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706675"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=952158","reference_id":"952158","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=952158"},{"reference_url":"https://security.gentoo.org/glsa/201402-21","reference_id":"GLSA-201402-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201402-21"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0222","reference_id":"RHSA-2014:0222","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0222"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0223","reference_id":"RHSA-2014:0223","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0223"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2013-1960"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p4dr-ub7s-3ybv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4743?format=json","vulnerability_id":"VCID-ph5n-1uzy-fffc","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3631.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3631.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3631","reference_id":"","reference_type":"","scores":[{"value":"0.0079","scoring_system":"epss","scoring_elements":"0.74243","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3631"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3631","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3631"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1316872","reference_id":"1316872","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1316872"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820366","reference_id":"820366","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820366"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3631"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ph5n-1uzy-fffc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4727?format=json","vulnerability_id":"VCID-png5-4eam-k7e2","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5321.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5321.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5321","reference_id":"","reference_type":"","scores":[{"value":"0.00248","scoring_system":"epss","scoring_elements":"0.48295","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346695","reference_id":"1346695","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346695"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5321"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-png5-4eam-k7e2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102752?format=json","vulnerability_id":"VCID-q5g6-aa65-1yb1","summary":"LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by failure of tif_next.c to verify that the BitsPerSample value is 2, and the t2p_sample_lab_signed_to_unsigned function in tiff2pdf.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8129.json","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8129.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8129","reference_id":"","reference_type":"","scores":[{"value":"0.01462","scoring_system":"epss","scoring_elements":"0.81203","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1185815","reference_id":"1185815","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1185815"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185","reference_id":"776185","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2014-8129"],"risk_score":2.0,"exploitability":"0.5","weighted_severity":"4.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q5g6-aa65-1yb1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102756?format=json","vulnerability_id":"VCID-qbnq-5kfz-pbez","summary":"The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1547.json","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1547.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-1547","reference_id":"","reference_type":"","scores":[{"value":"0.0445","scoring_system":"epss","scoring_elements":"0.89252","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-1547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1190709","reference_id":"1190709","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1190709"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390","reference_id":"777390","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2015-1547"],"risk_score":2.0,"exploitability":"0.5","weighted_severity":"4.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qbnq-5kfz-pbez"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102800?format=json","vulnerability_id":"VCID-qk9k-56ak-b7cm","summary":"In LibTIFF 4.0.8, there is a memory leak in tif_jbig.c. A crafted TIFF document can lead to a memory leak resulting in a remote denial of service attack.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9936.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9936.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9936","reference_id":"","reference_type":"","scores":[{"value":"0.05227","scoring_system":"epss","scoring_elements":"0.90123","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9936"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10688"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9936"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1469728","reference_id":"1469728","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1469728"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866113","reference_id":"866113","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866113"},{"reference_url":"http://bugzilla.maptools.org/show_bug.cgi?id=2706","reference_id":"CVE-2017-9936","reference_type":"exploit","scores":[],"url":"http://bugzilla.maptools.org/show_bug.cgi?id=2706"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42300.txt","reference_id":"CVE-2017-9936","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42300.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"}],"aliases":["CVE-2017-9936"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qk9k-56ak-b7cm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4924?format=json","vulnerability_id":"VCID-r2hy-dcn6-kfb8","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0908.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0908.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0908","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.1379","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/commit/a95b799f65064e4ba2e2dfc206808f86faf93e85","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/commit/a95b799f65064e4ba2e2dfc206808f86faf93e85"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/383","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/383"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064145","reference_id":"2064145","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064145"},{"reference_url":"https://security.archlinux.org/ASA-202204-6","reference_id":"ASA-202204-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-6"},{"reference_url":"https://security.archlinux.org/AVG-2658","reference_id":"AVG-2658","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2658"},{"reference_url":"https://security.archlinux.org/AVG-2659","reference_id":"AVG-2659","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2659"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0908","reference_id":"CVE-2022-0908","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0908"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0908.json","reference_id":"CVE-2022-0908.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0908.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7585","reference_id":"RHSA-2022:7585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8194","reference_id":"RHSA-2022:8194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8194"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2022-0908"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r2hy-dcn6-kfb8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4749?format=json","vulnerability_id":"VCID-r6sa-34pz-cugr","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3620.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3620.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3620","reference_id":"","reference_type":"","scores":[{"value":"0.0101","scoring_system":"epss","scoring_elements":"0.7744","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3620"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3620","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3620"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1316859","reference_id":"1316859","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1316859"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820363","reference_id":"820363","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820363"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3620"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r6sa-34pz-cugr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4747?format=json","vulnerability_id":"VCID-rarp-cytw-9yfq","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3622.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3622.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3622","reference_id":"","reference_type":"","scores":[{"value":"0.00906","scoring_system":"epss","scoring_elements":"0.76137","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1324823","reference_id":"1324823","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1324823"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820365","reference_id":"820365","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820365"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3622"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rarp-cytw-9yfq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4758?format=json","vulnerability_id":"VCID-sccn-urtk-gbb6","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2596.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2596.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2596","reference_id":"","reference_type":"","scores":[{"value":"0.00999","scoring_system":"epss","scoring_elements":"0.77329","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-2596"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2596","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2596"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=610759","reference_id":"610759","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=610759"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://security.gentoo.org/glsa/201209-02","reference_id":"GLSA-201209-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201209-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0222","reference_id":"RHSA-2014:0222","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0222"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2010-2596"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sccn-urtk-gbb6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4722?format=json","vulnerability_id":"VCID-scuk-jnxs-sbfu","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6223.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6223.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6223","reference_id":"","reference_type":"","scores":[{"value":"0.01239","scoring_system":"epss","scoring_elements":"0.79573","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1356867","reference_id":"1356867","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1356867"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842270","reference_id":"842270","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842270"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-6223"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-scuk-jnxs-sbfu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4721?format=json","vulnerability_id":"VCID-tht3-q94h-yya1","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9273.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9273.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9273","reference_id":"","reference_type":"","scores":[{"value":"0.00483","scoring_system":"epss","scoring_elements":"0.65584","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1395164","reference_id":"1395164","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1395164"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844013","reference_id":"844013","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844013"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9273"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tht3-q94h-yya1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4925?format=json","vulnerability_id":"VCID-ugr8-526g-5uhc","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0907.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0907.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0907","reference_id":"","reference_type":"","scores":[{"value":"0.00206","scoring_system":"epss","scoring_elements":"0.42935","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/392","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/392"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/314","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/314"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064143","reference_id":"2064143","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064143"},{"reference_url":"https://security.archlinux.org/ASA-202204-6","reference_id":"ASA-202204-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-6"},{"reference_url":"https://security.archlinux.org/AVG-2658","reference_id":"AVG-2658","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2658"},{"reference_url":"https://security.archlinux.org/AVG-2659","reference_id":"AVG-2659","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2659"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0907","reference_id":"CVE-2022-0907","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0907"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0907.json","reference_id":"CVE-2022-0907.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0907.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2022-0907"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ugr8-526g-5uhc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4738?format=json","vulnerability_id":"VCID-um8a-bvjq-abgy","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3945.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3945.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3945","reference_id":"","reference_type":"","scores":[{"value":"0.00158","scoring_system":"epss","scoring_elements":"0.36328","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325093","reference_id":"1325093","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1325093"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3945"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-um8a-bvjq-abgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6221?format=json","vulnerability_id":"VCID-uran-x628-rffb","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10779.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10779.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10779","reference_id":"","reference_type":"","scores":[{"value":"0.00509","scoring_system":"epss","scoring_elements":"0.66719","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1577311","reference_id":"1577311","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1577311"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898359","reference_id":"898359","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898359"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"},{"reference_url":"https://security.archlinux.org/AVG-816","reference_id":"AVG-816","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-816"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2053","reference_id":"RHSA-2019:2053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2053"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2018-10779"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uran-x628-rffb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4724?format=json","vulnerability_id":"VCID-uscn-2nfg-mqay","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5652.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5652.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5652","reference_id":"","reference_type":"","scores":[{"value":"0.03829","scoring_system":"epss","scoring_elements":"0.88351","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1389222","reference_id":"1389222","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1389222"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842361","reference_id":"842361","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842361"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0225","reference_id":"RHSA-2017:0225","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0225"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5652"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uscn-2nfg-mqay"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4707?format=json","vulnerability_id":"VCID-wbmf-tw8n-1ucj","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10095.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10095.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-10095","reference_id":"","reference_type":"","scores":[{"value":"0.00732","scoring_system":"epss","scoring_elements":"0.73079","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-10095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10095"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1410063","reference_id":"1410063","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1410063"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850316","reference_id":"850316","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850316"},{"reference_url":"https://security.archlinux.org/ASA-201707-17","reference_id":"ASA-201707-17","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201707-17"},{"reference_url":"https://security.archlinux.org/ASA-201707-18","reference_id":"ASA-201707-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201707-18"},{"reference_url":"https://security.archlinux.org/AVG-5","reference_id":"AVG-5","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-5"},{"reference_url":"https://security.archlinux.org/AVG-87","reference_id":"AVG-87","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-87"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-10095"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wbmf-tw8n-1ucj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4922?format=json","vulnerability_id":"VCID-wxte-z2qm-xues","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0924.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0924.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0924","reference_id":"","reference_type":"","scores":[{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21688","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0562"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22844"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/278","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/issues/278"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/311","reference_id":"","reference_type":"","scores":[],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/311"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064148","reference_id":"2064148","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064148"},{"reference_url":"https://security.archlinux.org/ASA-202204-6","reference_id":"ASA-202204-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-6"},{"reference_url":"https://security.archlinux.org/AVG-2658","reference_id":"AVG-2658","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2658"},{"reference_url":"https://security.archlinux.org/AVG-2659","reference_id":"AVG-2659","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2659"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0924","reference_id":"CVE-2022-0924","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0924"},{"reference_url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0924.json","reference_id":"CVE-2022-0924.JSON","reference_type":"","scores":[],"url":"https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0924.json"},{"reference_url":"https://security.gentoo.org/glsa/202210-10","reference_id":"GLSA-202210-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-10"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7585","reference_id":"RHSA-2022:7585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8194","reference_id":"RHSA-2022:8194","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8194"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2022-0924"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wxte-z2qm-xues"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6208?format=json","vulnerability_id":"VCID-wyae-x32v-ckb8","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18013.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18013.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-18013","reference_id":"","reference_type":"","scores":[{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51981","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-18013"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1530440","reference_id":"1530440","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1530440"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885985","reference_id":"885985","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885985"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"},{"reference_url":"https://security.archlinux.org/AVG-813","reference_id":"AVG-813","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-813"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2017-18013"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wyae-x32v-ckb8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6222?format=json","vulnerability_id":"VCID-xstr-45ms-4qe6","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9935.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9935.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9935","reference_id":"","reference_type":"","scores":[{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65691","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9935"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11335"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13726"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13727"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18013"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1469725","reference_id":"1469725","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1469725"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866109","reference_id":"866109","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866109"},{"reference_url":"https://security.archlinux.org/ASA-201811-17","reference_id":"ASA-201811-17","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-17"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-790","reference_id":"AVG-790","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-790"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2017-9935"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xstr-45ms-4qe6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102755?format=json","vulnerability_id":"VCID-ybp6-nrjt-7bdk","summary":"The (1) putcontig8bitYCbCr21tile function in tif_getimage.c or (2) NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff-cvs-1.tif and libtiff-cvs-2.tif.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9655.json","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9655.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9655","reference_id":"","reference_type":"","scores":[{"value":"0.01105","scoring_system":"epss","scoring_elements":"0.78433","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9655"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1190703","reference_id":"1190703","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1190703"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390","reference_id":"777390","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=777390"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2014-9655"],"risk_score":2.0,"exploitability":"0.5","weighted_severity":"4.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ybp6-nrjt-7bdk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102750?format=json","vulnerability_id":"VCID-yjke-vqxv-8bgu","summary":"The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4244.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4244.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4244","reference_id":"","reference_type":"","scores":[{"value":"0.0065","scoring_system":"epss","scoring_elements":"0.71212","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4231"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4244"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=996468","reference_id":"996468","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=996468"},{"reference_url":"https://security.gentoo.org/glsa/201402-21","reference_id":"GLSA-201402-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201402-21"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0222","reference_id":"RHSA-2014:0222","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0222"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0223","reference_id":"RHSA-2014:0223","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0223"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2013-4244"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yjke-vqxv-8bgu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4731?format=json","vulnerability_id":"VCID-z3mf-7y22-q7bz","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5317.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5317.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5317","reference_id":"","reference_type":"","scores":[{"value":"0.00518","scoring_system":"epss","scoring_elements":"0.67082","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346689","reference_id":"1346689","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346689"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700","reference_id":"830700","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830700"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5317"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z3mf-7y22-q7bz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4725?format=json","vulnerability_id":"VCID-z677-7ega-8khj","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5323.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5323.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5323","reference_id":"","reference_type":"","scores":[{"value":"0.00665","scoring_system":"epss","scoring_elements":"0.71598","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346696","reference_id":"1346696","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346696"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5323"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z677-7ega-8khj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4712?format=json","vulnerability_id":"VCID-z6yx-cgpy-cqax","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9537.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9537.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9537","reference_id":"","reference_type":"","scores":[{"value":"0.00416","scoring_system":"epss","scoring_elements":"0.62059","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397760","reference_id":"1397760","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1397760"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0225","reference_id":"RHSA-2017:0225","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0225"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-9537"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z6yx-cgpy-cqax"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4739?format=json","vulnerability_id":"VCID-zhm8-29qs-jufd","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3658.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3658.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3658","reference_id":"","reference_type":"","scores":[{"value":"0.00898","scoring_system":"epss","scoring_elements":"0.76023","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3658"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10266"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10267"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10270"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3658"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9535"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5225"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7592"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7593"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7594"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7595"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7596"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7597"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7598"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7600"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7601"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7602"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326257","reference_id":"1326257","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326257"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3658"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zhm8-29qs-jufd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102749?format=json","vulnerability_id":"VCID-zmv8-tbdx-7bce","summary":"Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted height and width values in a GIF image.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4243.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4243.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4243","reference_id":"","reference_type":"","scores":[{"value":"0.18712","scoring_system":"epss","scoring_elements":"0.95407","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4243"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4243","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4243"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742917","reference_id":"742917","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742917"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=996052","reference_id":"996052","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=996052"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0222","reference_id":"RHSA-2014:0222","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0222"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0223","reference_id":"RHSA-2014:0223","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0223"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"}],"aliases":["CVE-2013-4243"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zmv8-tbdx-7bce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4726?format=json","vulnerability_id":"VCID-znt9-r8xc-bbek","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5322.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5322.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5322","reference_id":"","reference_type":"","scores":[{"value":"0.0018","scoring_system":"epss","scoring_elements":"0.39295","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346683","reference_id":"1346683","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1346683"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-5322"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-znt9-r8xc-bbek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6207?format=json","vulnerability_id":"VCID-zw8d-7hse-1fe1","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10963.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10963.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10963","reference_id":"","reference_type":"","scores":[{"value":"0.00141","scoring_system":"epss","scoring_elements":"0.33903","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10963"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15209"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16335"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18557"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5784"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1579058","reference_id":"1579058","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1579058"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898348","reference_id":"898348","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898348"},{"reference_url":"https://security.archlinux.org/ASA-201811-18","reference_id":"ASA-201811-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201811-18"},{"reference_url":"https://security.archlinux.org/AVG-791","reference_id":"AVG-791","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-791"},{"reference_url":"https://security.archlinux.org/AVG-813","reference_id":"AVG-813","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-813"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:2053","reference_id":"RHSA-2019:2053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:2053"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5225?format=json","purl":"pkg:deb/debian/tiff@4.1.0%2Bgit191117-2~deb10u4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.1.0%252Bgit191117-2~deb10u4"}],"aliases":["CVE-2018-10963"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zw8d-7hse-1fe1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4757?format=json","vulnerability_id":"VCID-zxv1-87z1-hkbr","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8127.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8127.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8127","reference_id":"","reference_type":"","scores":[{"value":"0.01097","scoring_system":"epss","scoring_elements":"0.78345","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8128"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9330"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9655"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1547"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1185805","reference_id":"1185805","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1185805"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185","reference_id":"776185","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776185"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4066?format=json","purl":"pkg:deb/debian/tiff@4.0.2-6%2Bdeb7u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-9ufr-s5hf-j3bg"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bg9z-zm7j-8kdh"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-f9ny-geg2-ebdy"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-hv4a-w9rs-4fg4"},{"vulnerability":"VCID-j812-5e7u-77gj"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-qk9k-56ak-b7cm"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.2-6%252Bdeb7u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2014-8127"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zxv1-87z1-hkbr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4737?format=json","vulnerability_id":"VCID-zzch-261b-3ua1","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3990.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3990.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3990","reference_id":"","reference_type":"","scores":[{"value":"0.00444","scoring_system":"epss","scoring_elements":"0.63679","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3623"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5314"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5315"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5317"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5321"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5322"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5323"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9453"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9534"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9538"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9540"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326246","reference_id":"1326246","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1326246"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836570","reference_id":"836570","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836570"},{"reference_url":"https://security.archlinux.org/ASA-201611-26","reference_id":"ASA-201611-26","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-26"},{"reference_url":"https://security.archlinux.org/ASA-201611-27","reference_id":"ASA-201611-27","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201611-27"},{"reference_url":"https://security.archlinux.org/AVG-85","reference_id":"AVG-85","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-85"},{"reference_url":"https://security.archlinux.org/AVG-86","reference_id":"AVG-86","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-86"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1546","reference_id":"RHSA-2016:1546","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1546"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1547","reference_id":"RHSA-2016:1547","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1547"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4152?format=json","purl":"pkg:deb/debian/tiff@4.0.3-12.3%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13fq-85pm-9ucx"},{"vulnerability":"VCID-19y7-v51n-pfa5"},{"vulnerability":"VCID-346w-g3br-qyfj"},{"vulnerability":"VCID-4gq3-smes-y3ej"},{"vulnerability":"VCID-5bpk-63mp-myea"},{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6f7j-jffy-g3h1"},{"vulnerability":"VCID-6j88-9v6m-aqaa"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-8t9a-wr15-s3gj"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-ajjg-j3u3-87hb"},{"vulnerability":"VCID-aqsc-pckt-8kb6"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-bmhd-pxe4-5kg3"},{"vulnerability":"VCID-d1v8-kg4j-ayek"},{"vulnerability":"VCID-dbtw-xgms-g7a1"},{"vulnerability":"VCID-dyvz-88n7-aug5"},{"vulnerability":"VCID-eane-ev3e-93d3"},{"vulnerability":"VCID-eaxr-tudk-jfff"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-enmp-vfzt-ubdn"},{"vulnerability":"VCID-evq9-mjww-1qdk"},{"vulnerability":"VCID-eys7-uqtb-k3hf"},{"vulnerability":"VCID-f79u-ccnn-fkb2"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-gpud-pv1v-67c1"},{"vulnerability":"VCID-gr1x-z5t8-j3eh"},{"vulnerability":"VCID-h17a-js2a-x7dh"},{"vulnerability":"VCID-h9nx-bv3h-dyev"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-hep7-wa9u-ybbb"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-jpk4-8v2b-tkd3"},{"vulnerability":"VCID-k5c9-5xnv-57f7"},{"vulnerability":"VCID-kucf-4yqt-3fbg"},{"vulnerability":"VCID-ma1y-1jua-3bhz"},{"vulnerability":"VCID-n1yd-y1ur-cqgx"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nubb-rk2q-z3de"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-ph5n-1uzy-fffc"},{"vulnerability":"VCID-png5-4eam-k7e2"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-r6sa-34pz-cugr"},{"vulnerability":"VCID-rarp-cytw-9yfq"},{"vulnerability":"VCID-sccn-urtk-gbb6"},{"vulnerability":"VCID-scuk-jnxs-sbfu"},{"vulnerability":"VCID-tht3-q94h-yya1"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-um8a-bvjq-abgy"},{"vulnerability":"VCID-uran-x628-rffb"},{"vulnerability":"VCID-uscn-2nfg-mqay"},{"vulnerability":"VCID-wbmf-tw8n-1ucj"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-z3mf-7y22-q7bz"},{"vulnerability":"VCID-z677-7ega-8khj"},{"vulnerability":"VCID-z6yx-cgpy-cqax"},{"vulnerability":"VCID-zhm8-29qs-jufd"},{"vulnerability":"VCID-znt9-r8xc-bbek"},{"vulnerability":"VCID-zw8d-7hse-1fe1"},{"vulnerability":"VCID-zxv1-87z1-hkbr"},{"vulnerability":"VCID-zzch-261b-3ua1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.3-12.3%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/4891?format=json","purl":"pkg:deb/debian/tiff@4.0.8-2%2Bdeb9u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-631h-1ukc-2kbr"},{"vulnerability":"VCID-6bqr-yf8y-xba6"},{"vulnerability":"VCID-6vbx-9hme-ckgy"},{"vulnerability":"VCID-7fq4-rz4j-nye3"},{"vulnerability":"VCID-9fb5-82gn-c7em"},{"vulnerability":"VCID-b1uw-w9nk-v3ht"},{"vulnerability":"VCID-ehrs-qbcg-z3e1"},{"vulnerability":"VCID-gh3j-c1nj-sfby"},{"vulnerability":"VCID-hbjb-er6u-37dz"},{"vulnerability":"VCID-jm7h-py2k-c7ha"},{"vulnerability":"VCID-nrc9-7pss-6bgh"},{"vulnerability":"VCID-nvzg-8vh5-m3fy"},{"vulnerability":"VCID-r2hy-dcn6-kfb8"},{"vulnerability":"VCID-ugr8-526g-5uhc"},{"vulnerability":"VCID-wxte-z2qm-xues"},{"vulnerability":"VCID-wyae-x32v-ckb8"},{"vulnerability":"VCID-xstr-45ms-4qe6"},{"vulnerability":"VCID-zw8d-7hse-1fe1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.0.8-2%252Bdeb9u5"}],"aliases":["CVE-2016-3990"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zzch-261b-3ua1"}],"fixing_vulnerabilities":[],"risk_score":"4.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@3.7.2-7"}