{"url":"http://public2.vulnerablecode.io/api/packages/4251?format=json","purl":"pkg:deb/debian/audiofile@0.2.6-8","type":"deb","namespace":"debian","name":"audiofile","version":"0.2.6-8","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"0.3.6-5+deb12u1","latest_non_vulnerable_version":"0.3.6-5+deb12u1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6633?format=json","vulnerability_id":"VCID-3atb-2nhd-gfbz","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6834.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6834.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6834","reference_id":"","reference_type":"","scores":[{"value":"0.02893","scoring_system":"epss","scoring_elements":"0.86585","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02893","scoring_system":"epss","scoring_elements":"0.86605","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02893","scoring_system":"epss","scoring_elements":"0.86603","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02893","scoring_system":"epss","scoring_elements":"0.86593","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02893","scoring_system":"epss","scoring_elements":"0.86608","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432935","reference_id":"1432935","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432935"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6834"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3atb-2nhd-gfbz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6628?format=json","vulnerability_id":"VCID-5h3a-x22y-6qgn","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6839.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6839.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6839","reference_id":"","reference_type":"","scores":[{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88488","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88523","published_at":"2026-06-09T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88508","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88507","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88506","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6839"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432944","reference_id":"1432944","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432944"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6839"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5h3a-x22y-6qgn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59414?format=json","vulnerability_id":"VCID-5mfn-vgu5-u3ch","summary":"Heap buffer overflow vulnerability in FilePOSIX::read in File.cpp in audiofile 0.3.6 may cause denial-of-service via a crafted wav file, this bug can be triggered by the executable sfconvert.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18781.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18781.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-18781","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08701","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08727","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08734","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08686","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08738","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08754","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-18781"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18781","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18781"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2235372","reference_id":"2235372","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2235372"},{"reference_url":"https://github.com/mpruett/audiofile/issues/56","reference_id":"56","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:33:41Z/"}],"url":"https://github.com/mpruett/audiofile/issues/56"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2020-18781"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5mfn-vgu5-u3ch"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6629?format=json","vulnerability_id":"VCID-74p3-42c8-nybs","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6838.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6838.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6838","reference_id":"","reference_type":"","scores":[{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88488","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88523","published_at":"2026-06-09T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88508","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88507","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88506","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432943","reference_id":"1432943","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432943"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6838"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-74p3-42c8-nybs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59417?format=json","vulnerability_id":"VCID-76td-x7d9-mfcm","summary":"In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero bytes to truncate the data.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24599.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24599.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24599","reference_id":"","reference_type":"","scores":[{"value":"0.00201","scoring_system":"epss","scoring_elements":"0.42133","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00201","scoring_system":"epss","scoring_elements":"0.42208","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00201","scoring_system":"epss","scoring_elements":"0.42218","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00201","scoring_system":"epss","scoring_elements":"0.42191","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00201","scoring_system":"epss","scoring_elements":"0.42156","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00201","scoring_system":"epss","scoring_elements":"0.42165","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24599"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008017","reference_id":"1008017","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008017"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2058371","reference_id":"2058371","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2058371"},{"reference_url":"https://usn.ubuntu.com/6558-1/","reference_id":"USN-6558-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6558-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/644344?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-5%2Bdeb12u1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-5%252Bdeb12u1"}],"aliases":["CVE-2022-24599"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-76td-x7d9-mfcm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6631?format=json","vulnerability_id":"VCID-82as-2atf-q7ee","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6836.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6836.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6836","reference_id":"","reference_type":"","scores":[{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.8737","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.87392","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.8739","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.87387","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.87386","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.87399","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432937","reference_id":"1432937","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432937"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6836"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-82as-2atf-q7ee"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6640?format=json","vulnerability_id":"VCID-98dd-3e12-k3aw","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6827.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6827.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6827","reference_id":"","reference_type":"","scores":[{"value":"0.28771","scoring_system":"epss","scoring_elements":"0.96649","published_at":"2026-06-09T12:55:00Z"},{"value":"0.28771","scoring_system":"epss","scoring_elements":"0.96645","published_at":"2026-06-07T12:55:00Z"},{"value":"0.28771","scoring_system":"epss","scoring_elements":"0.96644","published_at":"2026-06-08T12:55:00Z"},{"value":"0.30351","scoring_system":"epss","scoring_elements":"0.96794","published_at":"2026-06-06T12:55:00Z"},{"value":"0.30351","scoring_system":"epss","scoring_elements":"0.96787","published_at":"2026-06-04T12:55:00Z"},{"value":"0.30351","scoring_system":"epss","scoring_elements":"0.9679","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432924","reference_id":"1432924","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432924"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6827"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-98dd-3e12-k3aw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6632?format=json","vulnerability_id":"VCID-b7c5-cega-kkc8","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6835.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6835.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6835","reference_id":"","reference_type":"","scores":[{"value":"0.02899","scoring_system":"epss","scoring_elements":"0.86614","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02899","scoring_system":"epss","scoring_elements":"0.86636","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02899","scoring_system":"epss","scoring_elements":"0.86633","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02899","scoring_system":"epss","scoring_elements":"0.86632","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02899","scoring_system":"epss","scoring_elements":"0.86621","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432939","reference_id":"1432939","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432939"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6835"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b7c5-cega-kkc8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6637?format=json","vulnerability_id":"VCID-cf5r-bt6e-3ug7","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6830.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6830.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6830","reference_id":"","reference_type":"","scores":[{"value":"0.03293","scoring_system":"epss","scoring_elements":"0.87437","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03293","scoring_system":"epss","scoring_elements":"0.87458","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03293","scoring_system":"epss","scoring_elements":"0.87457","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03293","scoring_system":"epss","scoring_elements":"0.87455","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03293","scoring_system":"epss","scoring_elements":"0.87454","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03293","scoring_system":"epss","scoring_elements":"0.87467","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432929","reference_id":"1432929","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432929"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6830"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cf5r-bt6e-3ug7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6638?format=json","vulnerability_id":"VCID-ep9h-wgq4-nqb6","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6829.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6829.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6829","reference_id":"","reference_type":"","scores":[{"value":"0.03073","scoring_system":"epss","scoring_elements":"0.86998","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03073","scoring_system":"epss","scoring_elements":"0.87021","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03073","scoring_system":"epss","scoring_elements":"0.87019","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03073","scoring_system":"epss","scoring_elements":"0.87014","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03073","scoring_system":"epss","scoring_elements":"0.87007","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03073","scoring_system":"epss","scoring_elements":"0.87018","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432928","reference_id":"1432928","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432928"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6829"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ep9h-wgq4-nqb6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6630?format=json","vulnerability_id":"VCID-jr3h-sc1c-huej","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6837.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6837.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6837","reference_id":"","reference_type":"","scores":[{"value":"0.05485","scoring_system":"epss","scoring_elements":"0.90374","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05485","scoring_system":"epss","scoring_elements":"0.90402","published_at":"2026-06-09T12:55:00Z"},{"value":"0.05485","scoring_system":"epss","scoring_elements":"0.90388","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05485","scoring_system":"epss","scoring_elements":"0.90386","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05485","scoring_system":"epss","scoring_elements":"0.90389","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432942","reference_id":"1432942","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432942"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6837"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jr3h-sc1c-huej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59373?format=json","vulnerability_id":"VCID-js5f-9hdn-3kdt","summary":"Buffer overflow in the afReadFrames function in audiofile (aka libaudiofile and Audio File Library) allows user-assisted remote attackers to cause a denial of service (program crash) or possibly execute arbitrary code via a crafted audio file, as demonstrated by sixteen-stereo-to-eight-mono.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7747.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7747.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7747","reference_id":"","reference_type":"","scores":[{"value":"0.47717","scoring_system":"epss","scoring_elements":"0.97769","published_at":"2026-06-08T12:55:00Z"},{"value":"0.47717","scoring_system":"epss","scoring_elements":"0.9777","published_at":"2026-06-09T12:55:00Z"},{"value":"0.53282","scoring_system":"epss","scoring_elements":"0.98026","published_at":"2026-06-04T12:55:00Z"},{"value":"0.53282","scoring_system":"epss","scoring_elements":"0.9803","published_at":"2026-06-05T12:55:00Z"},{"value":"0.53282","scoring_system":"epss","scoring_elements":"0.98031","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7747"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7747","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7747"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1269766","reference_id":"1269766","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1269766"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=801102","reference_id":"801102","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=801102"},{"reference_url":"https://usn.ubuntu.com/2787-1/","reference_id":"USN-2787-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2787-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2015-7747"],"risk_score":0.2,"exploitability":"0.5","weighted_severity":"0.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-js5f-9hdn-3kdt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6635?format=json","vulnerability_id":"VCID-m1fx-32e7-fkgk","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6832.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6832.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6832","reference_id":"","reference_type":"","scores":[{"value":"0.03032","scoring_system":"epss","scoring_elements":"0.86909","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03032","scoring_system":"epss","scoring_elements":"0.86931","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03032","scoring_system":"epss","scoring_elements":"0.86928","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03032","scoring_system":"epss","scoring_elements":"0.86923","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03032","scoring_system":"epss","scoring_elements":"0.86914","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03032","scoring_system":"epss","scoring_elements":"0.86925","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432932","reference_id":"1432932","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432932"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6832"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m1fx-32e7-fkgk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6634?format=json","vulnerability_id":"VCID-mefp-bc32-ffg8","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6833.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6833.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6833","reference_id":"","reference_type":"","scores":[{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88488","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88506","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88523","published_at":"2026-06-09T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88508","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03898","scoring_system":"epss","scoring_elements":"0.88507","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432933","reference_id":"1432933","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432933"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6833"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mefp-bc32-ffg8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6639?format=json","vulnerability_id":"VCID-njxz-5h7c-k7ge","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6828.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6828.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6828","reference_id":"","reference_type":"","scores":[{"value":"0.1856","scoring_system":"epss","scoring_elements":"0.9539","published_at":"2026-06-06T12:55:00Z"},{"value":"0.1856","scoring_system":"epss","scoring_elements":"0.95392","published_at":"2026-06-08T12:55:00Z"},{"value":"0.1856","scoring_system":"epss","scoring_elements":"0.95396","published_at":"2026-06-09T12:55:00Z"},{"value":"0.21156","scoring_system":"epss","scoring_elements":"0.95776","published_at":"2026-06-05T12:55:00Z"},{"value":"0.21156","scoring_system":"epss","scoring_elements":"0.9577","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432925","reference_id":"1432925","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432925"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6828"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-njxz-5h7c-k7ge"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59410?format=json","vulnerability_id":"VCID-nwn6-5eg9-nygf","summary":"In Audio File Library (aka audiofile) 0.3.6, there exists one NULL pointer dereference bug in ulaw2linear_buf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13147.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13147.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13147","reference_id":"","reference_type":"","scores":[{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.31465","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.31421","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.315","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.31432","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.31429","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.31397","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13147","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13147"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1726067","reference_id":"1726067","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1726067"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931343","reference_id":"931343","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931343"},{"reference_url":"https://usn.ubuntu.com/6558-1/","reference_id":"USN-6558-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6558-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/644344?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-5%2Bdeb12u1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-5%252Bdeb12u1"}],"aliases":["CVE-2019-13147"],"risk_score":0.8,"exploitability":"0.5","weighted_severity":"1.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nwn6-5eg9-nygf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59407?format=json","vulnerability_id":"VCID-rqur-traw-m3at","summary":"An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17095.json","reference_id":"","reference_type":"","scores":[{"value":"7.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17095.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17095","reference_id":"","reference_type":"","scores":[{"value":"0.11985","scoring_system":"epss","scoring_elements":"0.93902","published_at":"2026-06-04T12:55:00Z"},{"value":"0.11985","scoring_system":"epss","scoring_elements":"0.93911","published_at":"2026-06-05T12:55:00Z"},{"value":"0.14974","scoring_system":"epss","scoring_elements":"0.94696","published_at":"2026-06-06T12:55:00Z"},{"value":"0.14976","scoring_system":"epss","scoring_elements":"0.94698","published_at":"2026-06-08T12:55:00Z"},{"value":"0.14976","scoring_system":"epss","scoring_elements":"0.94703","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17095"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1631088","reference_id":"1631088","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1631088"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913166","reference_id":"913166","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3877","reference_id":"RHSA-2020:3877","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3877"},{"reference_url":"https://usn.ubuntu.com/3800-1/","reference_id":"USN-3800-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3800-1/"},{"reference_url":"https://usn.ubuntu.com/6558-1/","reference_id":"USN-6558-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6558-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/594881?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-5"}],"aliases":["CVE-2018-17095"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rqur-traw-m3at"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59404?format=json","vulnerability_id":"VCID-sfub-m7xv-4beq","summary":"The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-13440.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-13440.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-13440","reference_id":"","reference_type":"","scores":[{"value":"0.05654","scoring_system":"epss","scoring_elements":"0.90551","published_at":"2026-06-09T12:55:00Z"},{"value":"0.05654","scoring_system":"epss","scoring_elements":"0.90536","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05654","scoring_system":"epss","scoring_elements":"0.90535","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0646","scoring_system":"epss","scoring_elements":"0.91238","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0646","scoring_system":"epss","scoring_elements":"0.91251","published_at":"2026-06-05T12:55:00Z"},{"value":"0.08234","scoring_system":"epss","scoring_elements":"0.92376","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-13440"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-13440","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-13440"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1600367","reference_id":"1600367","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1600367"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=903499","reference_id":"903499","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=903499"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3877","reference_id":"RHSA-2020:3877","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3877"},{"reference_url":"https://usn.ubuntu.com/3800-1/","reference_id":"USN-3800-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3800-1/"},{"reference_url":"https://usn.ubuntu.com/6558-1/","reference_id":"USN-6558-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6558-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/594881?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-5"}],"aliases":["CVE-2018-13440"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sfub-m7xv-4beq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6636?format=json","vulnerability_id":"VCID-vyuh-uy54-rqbg","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6831.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6831.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6831","reference_id":"","reference_type":"","scores":[{"value":"0.01848","scoring_system":"epss","scoring_elements":"0.83341","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01848","scoring_system":"epss","scoring_elements":"0.83365","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01848","scoring_system":"epss","scoring_elements":"0.83367","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01848","scoring_system":"epss","scoring_elements":"0.83363","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01848","scoring_system":"epss","scoring_elements":"0.83356","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01848","scoring_system":"epss","scoring_elements":"0.83369","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6828"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6833"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6834"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6836"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6839"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432930","reference_id":"1432930","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1432930"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651","reference_id":"857651","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857651"},{"reference_url":"https://security.archlinux.org/ASA-201708-9","reference_id":"ASA-201708-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-9"},{"reference_url":"https://security.archlinux.org/AVG-205","reference_id":"AVG-205","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-205"},{"reference_url":"https://usn.ubuntu.com/3241-1/","reference_id":"USN-3241-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3241-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4254?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-2%2Bdeb8u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-2%252Bdeb8u2"},{"url":"http://public2.vulnerablecode.io/api/packages/5606?format=json","purl":"pkg:deb/debian/audiofile@0.3.6-4%2Bdeb9u1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.3.6-4%252Bdeb9u1"}],"aliases":["CVE-2017-6831"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vyuh-uy54-rqbg"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59370?format=json","vulnerability_id":"VCID-mk8c-cbr3-fqae","summary":"Heap-based buffer overflow in msadpcm.c in libaudiofile in audiofile 0.2.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted WAV file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5824.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5824.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5824","reference_id":"","reference_type":"","scores":[{"value":"0.14579","scoring_system":"epss","scoring_elements":"0.94593","published_at":"2026-06-04T12:55:00Z"},{"value":"0.14579","scoring_system":"epss","scoring_elements":"0.94601","published_at":"2026-06-05T12:55:00Z"},{"value":"0.14579","scoring_system":"epss","scoring_elements":"0.94602","published_at":"2026-06-06T12:55:00Z"},{"value":"0.14579","scoring_system":"epss","scoring_elements":"0.94604","published_at":"2026-06-07T12:55:00Z"},{"value":"0.14579","scoring_system":"epss","scoring_elements":"0.94605","published_at":"2026-06-08T12:55:00Z"},{"value":"0.14579","scoring_system":"epss","scoring_elements":"0.94611","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5824"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5824","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5824"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=479966","reference_id":"479966","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=479966"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=510205","reference_id":"510205","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=510205"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32691.txt","reference_id":"CVE-2008-5824;OSVDB-51069","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/32691.txt"},{"reference_url":"https://www.securityfocus.com/bid/33066/info","reference_id":"CVE-2008-5824;OSVDB-51069","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/33066/info"},{"reference_url":"https://usn.ubuntu.com/912-1/","reference_id":"USN-912-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/912-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4251?format=json","purl":"pkg:deb/debian/audiofile@0.2.6-8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3atb-2nhd-gfbz"},{"vulnerability":"VCID-5h3a-x22y-6qgn"},{"vulnerability":"VCID-5mfn-vgu5-u3ch"},{"vulnerability":"VCID-74p3-42c8-nybs"},{"vulnerability":"VCID-76td-x7d9-mfcm"},{"vulnerability":"VCID-82as-2atf-q7ee"},{"vulnerability":"VCID-98dd-3e12-k3aw"},{"vulnerability":"VCID-b7c5-cega-kkc8"},{"vulnerability":"VCID-cf5r-bt6e-3ug7"},{"vulnerability":"VCID-ep9h-wgq4-nqb6"},{"vulnerability":"VCID-jr3h-sc1c-huej"},{"vulnerability":"VCID-js5f-9hdn-3kdt"},{"vulnerability":"VCID-m1fx-32e7-fkgk"},{"vulnerability":"VCID-mefp-bc32-ffg8"},{"vulnerability":"VCID-njxz-5h7c-k7ge"},{"vulnerability":"VCID-nwn6-5eg9-nygf"},{"vulnerability":"VCID-rqur-traw-m3at"},{"vulnerability":"VCID-sfub-m7xv-4beq"},{"vulnerability":"VCID-vyuh-uy54-rqbg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.2.6-8"}],"aliases":["CVE-2008-5824"],"risk_score":0.2,"exploitability":"2.0","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mk8c-cbr3-fqae"}],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/audiofile@0.2.6-8"}