{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","type":"deb","namespace":"debian","name":"gdm3","version":"3.38.2.1-1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"43.0-3","latest_non_vulnerable_version":"50.1-2","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/8427?format=json","vulnerability_id":"VCID-27g4-jtzm-c3cz","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27837.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27837.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27837","reference_id":"","reference_type":"","scores":[{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12906","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27837"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1906812","reference_id":"1906812","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1906812"},{"reference_url":"https://security.archlinux.org/AVG-1380","reference_id":"AVG-1380","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1380"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2020-27837"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-27g4-jtzm-c3cz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/213306?format=json","vulnerability_id":"VCID-34nq-s64q-4qbm","summary":"GNOME Display Manager (gdm) before 2.21.1 allows local users to change permissions of arbitrary directories via a symlink attack on /tmp/.X11-unix/.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4169.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4169.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4169","reference_id":"","reference_type":"","scores":[{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08157","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08195","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4169"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=988498","reference_id":"988498","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=988498"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1213","reference_id":"RHSA-2013:1213","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1213"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42973?format=json","purl":"pkg:deb/debian/gdm3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2013-4169"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-34nq-s64q-4qbm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176459?format=json","vulnerability_id":"VCID-7j7a-3n58-fba4","summary":"This GLSA contains notification of vulnerabilities found in several\n    Gentoo packages which have been fixed prior to January 1, 2012. The worst\n    of these vulnerabilities could lead to local privilege escalation and\n    remote code execution. Please see the package list and CVE identifiers\n    below for more information.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0727.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0727.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0727","reference_id":"","reference_type":"","scores":[{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20246","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20422","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0727"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0727","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0727"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=688323","reference_id":"688323","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=688323"},{"reference_url":"https://security.gentoo.org/glsa/201412-09","reference_id":"GLSA-201412-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0395","reference_id":"RHSA-2011:0395","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0395"},{"reference_url":"https://usn.ubuntu.com/1099-1/","reference_id":"USN-1099-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1099-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42968?format=json","purl":"pkg:deb/debian/gdm3@2.30.5-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@2.30.5-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2011-0727"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7j7a-3n58-fba4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/477?format=json","vulnerability_id":"VCID-a4zq-qbt3-d3de","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7496.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7496.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7496","reference_id":"","reference_type":"","scores":[{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23445","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-7496"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7496","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7496"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:L/Au:S/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1283279","reference_id":"1283279","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1283279"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2128","reference_id":"RHSA-2017:2128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2128"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42975?format=json","purl":"pkg:deb/debian/gdm3@3.18.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.18.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2015-7496"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a4zq-qbt3-d3de"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7063?format=json","vulnerability_id":"VCID-aqgh-utv2-h3hh","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3825.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3825.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-3825","reference_id":"","reference_type":"","scores":[{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22727","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-3825"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3825","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3825"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1672825","reference_id":"1672825","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1672825"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921764","reference_id":"921764","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921764"},{"reference_url":"https://security.archlinux.org/ASA-201903-3","reference_id":"ASA-201903-3","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201903-3"},{"reference_url":"https://security.archlinux.org/AVG-879","reference_id":"AVG-879","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1766","reference_id":"RHSA-2020:1766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1766"},{"reference_url":"https://usn.ubuntu.com/3892-1/","reference_id":"USN-3892-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3892-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42978?format=json","purl":"pkg:deb/debian/gdm3@3.30.2-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.30.2-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2019-3825"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-aqgh-utv2-h3hh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7932?format=json","vulnerability_id":"VCID-cff2-xxv1-ekhe","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16125.json","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16125.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-16125","reference_id":"","reference_type":"","scores":[{"value":"0.22102","scoring_system":"epss","scoring_elements":"0.95919","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-16125"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16125","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16125"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1901994","reference_id":"1901994","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1901994"},{"reference_url":"https://security.archlinux.org/ASA-202011-5","reference_id":"ASA-202011-5","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202011-5"},{"reference_url":"https://security.archlinux.org/AVG-1264","reference_id":"AVG-1264","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1264"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1586","reference_id":"RHSA-2021:1586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1586"},{"reference_url":"https://usn.ubuntu.com/4614-1/","reference_id":"USN-4614-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4614-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42979?format=json","purl":"pkg:deb/debian/gdm3@3.38.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2020-16125"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cff2-xxv1-ekhe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/203158?format=json","vulnerability_id":"VCID-ew44-k2hq-57g8","summary":"GNOME Display Manager (gdm) 3.4.1 and earlier, when disable-user-list is set to true, allows local users to cause a denial of service (unable to login) by pressing the cancel button after entering a user name.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7273.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7273.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7273","reference_id":"","reference_type":"","scores":[{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.20951","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21127","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7273"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1050745","reference_id":"1050745","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1050745"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683338","reference_id":"683338","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683338"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42974?format=json","purl":"pkg:deb/debian/gdm3@3.8.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.8.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2013-7273"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ew44-k2hq-57g8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4782?format=json","vulnerability_id":"VCID-g1zj-dw7b-nyg5","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14424.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14424.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14424","reference_id":"","reference_type":"","scores":[{"value":"0.00049","scoring_system":"epss","scoring_elements":"0.15748","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14424"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1606915","reference_id":"1606915","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1606915"},{"reference_url":"https://usn.ubuntu.com/3737-1/","reference_id":"USN-3737-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3737-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42977?format=json","purl":"pkg:deb/debian/gdm3@3.28.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.28.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2018-14424"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g1zj-dw7b-nyg5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/204800?format=json","vulnerability_id":"VCID-mtng-neav-kufb","summary":"A flaw was discovered in gdm 3.24.1 where gdm greeter was no longer setting the ran_once boolean during autologin. If autologin was enabled for a victim, an attacker could simply select 'login as another user' to unlock their screen.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12164.json","reference_id":"","reference_type":"","scores":[{"value":"4.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:P/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12164.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12164","reference_id":"","reference_type":"","scores":[{"value":"0.00136","scoring_system":"epss","scoring_elements":"0.33289","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12164"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12164","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12164"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1490417","reference_id":"1490417","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1490417"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42976?format=json","purl":"pkg:deb/debian/gdm3@3.26.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.26.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2017-12164"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mtng-neav-kufb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/213305?format=json","vulnerability_id":"VCID-y6bt-6r2z-y3hy","summary":"GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1709.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1709.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1709","reference_id":"","reference_type":"","scores":[{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17623","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17783","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1709"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=709139","reference_id":"709139","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=709139"},{"reference_url":"https://usn.ubuntu.com/1142-1/","reference_id":"USN-1142-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1142-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42973?format=json","purl":"pkg:deb/debian/gdm3@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42969?format=json","purl":"pkg:deb/debian/gdm3@3.38.2.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42967?format=json","purl":"pkg:deb/debian/gdm3@43.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@43.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42972?format=json","purl":"pkg:deb/debian/gdm3@48.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@48.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42970?format=json","purl":"pkg:deb/debian/gdm3@49.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@49.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42971?format=json","purl":"pkg:deb/debian/gdm3@50.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@50.1-2%3Fdistro=trixie"}],"aliases":["CVE-2011-1709"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y6bt-6r2z-y3hy"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdm3@3.38.2.1-1%3Fdistro=trixie"}