Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/44441?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "type": "deb", "namespace": "debian", "name": "graphviz", "version": "2.42.2-7+deb12u1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "2.42.2-8", "latest_non_vulnerable_version": "14.1.2-1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15985?format=api", "vulnerability_id": "VCID-qkkg-yhpe-cfa2", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-46045", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13477", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13366", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-46045" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46045", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46045" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://www.openwall.com/lists/oss-security/2024/02/01/2", "reference_id": "2", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/" } ], "url": "https://www.openwall.com/lists/oss-security/2024/02/01/2" }, { "reference_url": "http://seclists.org/fulldisclosure/2024/Feb/24", "reference_id": "24", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/" } ], "url": "http://seclists.org/fulldisclosure/2024/Feb/24" }, { "reference_url": "https://seclists.org/fulldisclosure/2024/Feb/24", "reference_id": "24", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/" } ], "url": "https://seclists.org/fulldisclosure/2024/Feb/24" }, { "reference_url": "https://gitlab.com/graphviz/graphviz/-/issues/2441", "reference_id": "2441", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/" } ], "url": "https://gitlab.com/graphviz/graphviz/-/issues/2441" }, { "reference_url": "https://seclists.org/fulldisclosure/2024/Jan/73", "reference_id": "73", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:21:09Z/" } ], "url": "https://seclists.org/fulldisclosure/2024/Jan/73" }, { "reference_url": "https://usn.ubuntu.com/6708-1/", "reference_id": "USN-6708-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6708-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44453?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-8?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-8%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-46045" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qkkg-yhpe-cfa2" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/177962?format=api", "vulnerability_id": "VCID-8cq4-xdte-3qd8", "summary": "A buffer overflow in Graphviz might lead to user-assisted execution of\n arbitrary code via a DOT file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4555.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4555.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-4555", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05229", "scoring_system": "epss", "scoring_elements": "0.90171", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.05229", "scoring_system": "epss", "scoring_elements": "0.90202", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-4555" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4555", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4555" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=466914", "reference_id": "466914", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=466914" }, { "reference_url": "https://security.gentoo.org/glsa/200811-04", "reference_id": "GLSA-200811-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200811-04" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44446?format=api", "purl": "pkg:deb/debian/graphviz@2.20.2-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.20.2-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44443?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-4555" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8cq4-xdte-3qd8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/113595?format=api", "vulnerability_id": "VCID-8jf2-e6ar-q7fs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9157.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9157.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9157", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01899", "scoring_system": "epss", "scoring_elements": "0.83632", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01899", "scoring_system": "epss", "scoring_elements": "0.83691", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9157" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9157", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9157" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1167866", "reference_id": "1167866", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1167866" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=772648", "reference_id": "772648", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=772648" }, { "reference_url": "https://usn.ubuntu.com/2435-1/", "reference_id": "USN-2435-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2435-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44450?format=api", "purl": "pkg:deb/debian/graphviz@2.38.0-7?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.38.0-7%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44443?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-9157" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8jf2-e6ar-q7fs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4364?format=api", "vulnerability_id": "VCID-9521-g9mw-zfbm", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10196.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10196.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10196", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00317", "scoring_system": "epss", "scoring_elements": "0.55225", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00317", "scoring_system": "epss", "scoring_elements": "0.55347", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10196" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10196", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10196" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1579254", "reference_id": "1579254", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1579254" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898841", "reference_id": "898841", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898841" }, { "reference_url": "https://usn.ubuntu.com/5264-1/", "reference_id": "USN-5264-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5264-1/" }, { "reference_url": "https://usn.ubuntu.com/5971-1/", "reference_id": "USN-5971-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5971-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44451?format=api", "purl": "pkg:deb/debian/graphviz@2.40.1-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.40.1-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44443?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2018-10196" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9521-g9mw-zfbm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/200278?format=api", "vulnerability_id": "VCID-95vs-jucu-q3ap", "summary": "graphviz before 2.2.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files. NOTE: this issue was originally associated with a different CVE identifier, CVE-2005-2965, which had been used for multiple different issues. This is the correct identifier.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2005-4803", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19964", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.20137", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2005-4803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4803" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336985", "reference_id": "336985", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336985" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44442?format=api", "purl": "pkg:deb/debian/graphviz@2.2.1-1sarge1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.2.1-1sarge1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44443?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2005-4803" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-95vs-jucu-q3ap" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/185256?format=api", "vulnerability_id": "VCID-9fcj-h8cp-9be2", "summary": "Multiple vulnerabilities have been found in Graphviz and the extent\n of these vulnerabilities are unspecified.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-1235.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-1235.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1235", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00919", "scoring_system": "epss", "scoring_elements": "0.76407", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00919", "scoring_system": "epss", "scoring_elements": "0.76477", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1235" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1235", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1235" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1050871", "reference_id": "1050871", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1050871" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745", "reference_id": "734745", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745" }, { "reference_url": "https://security.gentoo.org/glsa/201702-06", "reference_id": "GLSA-201702-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-06" }, { "reference_url": "https://usn.ubuntu.com/2083-1/", "reference_id": "USN-2083-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2083-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44449?format=api", "purl": "pkg:deb/debian/graphviz@2.26.3-16.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.26.3-16.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44443?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-1235" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9fcj-h8cp-9be2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/110523?format=api", "vulnerability_id": "VCID-anx5-s5ck-k7ed", "summary": "buffer overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0978.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0978.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-0978", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06542", "scoring_system": "epss", "scoring_elements": "0.91337", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.06542", "scoring_system": "epss", "scoring_elements": "0.91368", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-0978" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0978", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0978" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1236", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1236" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049165", "reference_id": "1049165", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049165" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745", "reference_id": "734745", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745" }, { "reference_url": "https://security.gentoo.org/glsa/201702-06", "reference_id": "GLSA-201702-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-06" }, { "reference_url": "https://usn.ubuntu.com/2083-1/", "reference_id": "USN-2083-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2083-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44448?format=api", "purl": "pkg:deb/debian/graphviz@2.26.3-16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.26.3-16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44443?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-0978" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-anx5-s5ck-k7ed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/110524?format=api", "vulnerability_id": "VCID-b3dg-ecet-47bp", "summary": "buffer overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-1236.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-1236.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1236", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07859", "scoring_system": "epss", "scoring_elements": "0.9219", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.07859", "scoring_system": "epss", "scoring_elements": "0.92217", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-1236" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0978", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0978" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1236", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1236" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1050872", "reference_id": "1050872", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1050872" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745", "reference_id": "734745", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734745" }, { "reference_url": "https://security.gentoo.org/glsa/201702-06", "reference_id": "GLSA-201702-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-06" }, { "reference_url": "https://usn.ubuntu.com/2083-1/", "reference_id": "USN-2083-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2083-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44449?format=api", "purl": "pkg:deb/debian/graphviz@2.26.3-16.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.26.3-16.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44443?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-1236" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b3dg-ecet-47bp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/176755?format=api", "vulnerability_id": "VCID-q2kx-759k-4ydw", "summary": "Multiple vulnerabilities have been found in GraphicsMagick,\n allowing remote attackers to execute arbitrary code or cause a Denial of\n Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3736.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3736.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3736", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30686", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30884", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3736" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3736", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3736" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=537941", "reference_id": "537941", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=537941" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559797", "reference_id": "559797", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559797" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559801", "reference_id": "559801", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559801" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559806", "reference_id": "559806", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559806" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559809", "reference_id": "559809", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559809" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559811", "reference_id": "559811", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559811" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559814", "reference_id": "559814", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559814" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559815", "reference_id": "559815", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559815" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559816", "reference_id": "559816", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559816" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559819", "reference_id": "559819", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559819" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559822", "reference_id": "559822", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559822" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559824", "reference_id": "559824", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559824" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559825", "reference_id": "559825", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559825" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559826", "reference_id": "559826", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559826" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559829", "reference_id": "559829", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559829" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559831", "reference_id": "559831", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559831" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559832", "reference_id": "559832", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559832" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559833", "reference_id": "559833", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559833" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559834", "reference_id": "559834", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559834" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559835", "reference_id": "559835", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559835" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559836", "reference_id": "559836", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559836" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559837", "reference_id": "559837", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559837" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559840", "reference_id": "559840", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559840" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559844", "reference_id": "559844", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559844" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559845", "reference_id": "559845", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559845" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702436", "reference_id": "702436", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702436" }, { "reference_url": "https://security.gentoo.org/glsa/201311-10", "reference_id": "GLSA-201311-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201311-10" }, { "reference_url": "https://security.gentoo.org/glsa/201412-08", "reference_id": "GLSA-201412-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201412-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1646", "reference_id": "RHSA-2009:1646", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1646" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0039", "reference_id": "RHSA-2010:0039", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0039" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44447?format=api", "purl": "pkg:deb/debian/graphviz@2.26.3-14?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.26.3-14%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44443?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-3736" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q2kx-759k-4ydw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8008?format=api", "vulnerability_id": "VCID-wujx-8ewh-dya6", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18032.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18032.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-18032", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01191", "scoring_system": "epss", "scoring_elements": "0.79249", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01191", "scoring_system": "epss", "scoring_elements": "0.79314", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-18032" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18032", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18032" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1966272", "reference_id": "1966272", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1966272" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988000", "reference_id": "988000", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988000" }, { "reference_url": "https://security.gentoo.org/glsa/202107-04", "reference_id": "GLSA-202107-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4256", "reference_id": "RHSA-2021:4256", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4256" }, { "reference_url": "https://usn.ubuntu.com/5264-1/", "reference_id": "USN-5264-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5264-1/" }, { "reference_url": "https://usn.ubuntu.com/5971-1/", "reference_id": "USN-5971-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5971-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/44452?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44443?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-5%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44441?format=api", "purl": "pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qkkg-yhpe-cfa2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44445?format=api", "purl": "pkg:deb/debian/graphviz@2.42.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/44444?format=api", "purl": "pkg:deb/debian/graphviz@14.1.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@14.1.2-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-18032" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wujx-8ewh-dya6" } ], "risk_score": "3.5", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/graphviz@2.42.2-7%252Bdeb12u1%3Fdistro=trixie" }