{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","type":"deb","namespace":"debian","name":"inkscape","version":"1.4.3-1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/22656?format=json","vulnerability_id":"VCID-4d7b-jx5s-n3hw","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15523.json","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15523.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-15523","reference_id":"","reference_type":"","scores":[{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00459","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-15523"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2432045","reference_id":"2432045","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2432045"},{"reference_url":"https://cert.pl/en/posts/2026/01/CVE-2025-15523/","reference_id":"CVE-2025-15523","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T15:05:02Z/"}],"url":"https://cert.pl/en/posts/2026/01/CVE-2025-15523/"},{"reference_url":"https://inkscape.org/","reference_id":"inkscape.org","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T15:05:02Z/"}],"url":"https://inkscape.org/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47715?format=json","purl":"pkg:deb/debian/inkscape@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2025-15523"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4d7b-jx5s-n3hw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184862?format=json","vulnerability_id":"VCID-52b9-kfku-pffx","summary":"Two format string vulnerabilities have been discovered in Inkscape,\n    allowing for user-assisted execution of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1464","reference_id":"","reference_type":"","scores":[{"value":"0.06962","scoring_system":"epss","scoring_elements":"0.91638","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1464"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1464","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1464"},{"reference_url":"https://security.gentoo.org/glsa/200704-10","reference_id":"GLSA-200704-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200704-10"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47688?format=json","purl":"pkg:deb/debian/inkscape@0.45.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@0.45.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2007-1464"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-52b9-kfku-pffx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/29958?format=json","vulnerability_id":"VCID-773j-558s-7ya8","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4980.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4980.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4980","reference_id":"","reference_type":"","scores":[{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12801","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-4980"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2452319","reference_id":"2452319","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2452319"},{"reference_url":"https://gitlab.com/inkscape/inkscape/-/work_items/3557","reference_id":"3557","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-27T15:12:52Z/"}],"url":"https://gitlab.com/inkscape/inkscape/-/work_items/3557"},{"reference_url":"https://gitlab.com/inkscape/inkscape/-/merge_requests/5269","reference_id":"5269","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-27T15:12:52Z/"}],"url":"https://gitlab.com/inkscape/inkscape/-/merge_requests/5269"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47715?format=json","purl":"pkg:deb/debian/inkscape@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47716?format=json","purl":"pkg:deb/debian/inkscape@1.4-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2026-4980"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-773j-558s-7ya8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/10173?format=json","vulnerability_id":"VCID-anp8-sd12-hfer","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-42704.json","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-42704.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-42704","reference_id":"","reference_type":"","scores":[{"value":"0.00394","scoring_system":"epss","scoring_elements":"0.6073","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-42704"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42704","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42704"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2088221","reference_id":"2088221","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2088221"},{"reference_url":"https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03","reference_id":"icsa-22-132-03","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:50:21Z/"}],"url":"https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03"},{"reference_url":"https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/","reference_id":"scada-animation-graphic-editor-extension-inkscape","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:50:21Z/"}],"url":"https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47695?format=json","purl":"pkg:deb/debian/inkscape@1.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2021-42704"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-anp8-sd12-hfer"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185768?format=json","vulnerability_id":"VCID-aq7g-gatm-13bj","summary":"A vulnerability has been identified that allows a specially crafted SVG\n    file to exploit a buffer overflow and potentially execute arbitrary code\n    when opened.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3737","reference_id":"","reference_type":"","scores":[{"value":"0.28064","scoring_system":"epss","scoring_elements":"0.96588","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3737"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3737","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3737"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=330894","reference_id":"330894","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=330894"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/26540.txt","reference_id":"CVE-2005-3737;OSVDB-21001","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/26540.txt"},{"reference_url":"https://www.securityfocus.com/bid/15507/info","reference_id":"CVE-2005-3737;OSVDB-21001","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/15507/info"},{"reference_url":"https://security.gentoo.org/glsa/200511-22","reference_id":"GLSA-200511-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200511-22"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47683?format=json","purl":"pkg:deb/debian/inkscape@0.43-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@0.43-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2005-3737"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-aq7g-gatm-13bj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/10172?format=json","vulnerability_id":"VCID-eje6-en8b-vugw","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-42702.json","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-42702.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-42702","reference_id":"","reference_type":"","scores":[{"value":"0.0016","scoring_system":"epss","scoring_elements":"0.36692","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-42702"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42702","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42702"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2088224","reference_id":"2088224","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2088224"},{"reference_url":"https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03","reference_id":"icsa-22-132-03","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:50:02Z/"}],"url":"https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03"},{"reference_url":"https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/","reference_id":"scada-animation-graphic-editor-extension-inkscape","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:50:02Z/"}],"url":"https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47695?format=json","purl":"pkg:deb/debian/inkscape@1.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2021-42702"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-eje6-en8b-vugw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/10171?format=json","vulnerability_id":"VCID-ezdb-4gcc-1yav","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-42700.json","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-42700.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-42700","reference_id":"","reference_type":"","scores":[{"value":"0.0016","scoring_system":"epss","scoring_elements":"0.36692","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-42700"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42700","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42700"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2088225","reference_id":"2088225","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2088225"},{"reference_url":"https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03","reference_id":"icsa-22-132-03","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:50:06Z/"}],"url":"https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03"},{"reference_url":"https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/","reference_id":"scada-animation-graphic-editor-extension-inkscape","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:50:06Z/"}],"url":"https://www.integraxor.com/scada-animation-graphic-editor-extension-inkscape/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47695?format=json","purl":"pkg:deb/debian/inkscape@1.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2021-42700"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ezdb-4gcc-1yav"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200254?format=json","vulnerability_id":"VCID-gd32-c3wm-33ba","summary":"The ps2epsi extension shell script (ps2epsi.sh) in Inkscape before 0.41 allows local users to overwrite arbitrary files via a symlink attack on the tmpepsifile.epsi temporary file.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3885","reference_id":"","reference_type":"","scores":[{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.2348","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3885","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3885"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=321501","reference_id":"321501","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=321501"},{"reference_url":"https://usn.ubuntu.com/223-1/","reference_id":"USN-223-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/223-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47687?format=json","purl":"pkg:deb/debian/inkscape@0.42-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@0.42-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2005-3885"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gd32-c3wm-33ba"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/202532?format=json","vulnerability_id":"VCID-jdsd-6fg8-7ka5","summary":"The rasterization process in Inkscape before 0.48.4 allows local users to read arbitrary files via an external entity in a SVG file, aka an XML external entity (XXE) injection attack.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5656.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5656.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-5656","reference_id":"","reference_type":"","scores":[{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.16602","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-5656"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5656","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5656"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696485","reference_id":"696485","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696485"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=888249","reference_id":"888249","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=888249"},{"reference_url":"https://usn.ubuntu.com/1712-1/","reference_id":"USN-1712-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1712-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47689?format=json","purl":"pkg:deb/debian/inkscape@0.48.3.1-1.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@0.48.3.1-1.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2012-5656"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jdsd-6fg8-7ka5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184861?format=json","vulnerability_id":"VCID-wnkr-67nv-zqcy","summary":"Two format string vulnerabilities have been discovered in Inkscape,\n    allowing for user-assisted execution of arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1463","reference_id":"","reference_type":"","scores":[{"value":"0.16555","scoring_system":"epss","scoring_elements":"0.95063","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1463"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1463","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1463"},{"reference_url":"https://security.gentoo.org/glsa/200704-10","reference_id":"GLSA-200704-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200704-10"},{"reference_url":"https://usn.ubuntu.com/438-1/","reference_id":"USN-438-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/438-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47688?format=json","purl":"pkg:deb/debian/inkscape@0.45.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@0.45.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2007-1463"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wnkr-67nv-zqcy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/202559?format=json","vulnerability_id":"VCID-z28w-zhn3-fkbk","summary":"Inkscape before 0.48.4 reads .eps files from /tmp instead of the current directory, which might cause Inkspace to process unintended files, allow local users to obtain sensitive information, and possibly have other unspecified impacts.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-6076.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-6076.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-6076","reference_id":"","reference_type":"","scores":[{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30355","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-6076"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6076","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6076"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=654341","reference_id":"654341","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=654341"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=891331","reference_id":"891331","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=891331"},{"reference_url":"https://usn.ubuntu.com/1712-1/","reference_id":"USN-1712-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1712-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/47693?format=json","purl":"pkg:deb/debian/inkscape@0.48.3.1-1.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@0.48.3.1-1.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47684?format=json","purl":"pkg:deb/debian/inkscape@1.0.2-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.0.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47682?format=json","purl":"pkg:deb/debian/inkscape@1.2.2-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-773j-558s-7ya8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.2.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47686?format=json","purl":"pkg:deb/debian/inkscape@1.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/47685?format=json","purl":"pkg:deb/debian/inkscape@1.4.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}],"aliases":["CVE-2012-6076"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z28w-zhn3-fkbk"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/inkscape@1.4.3-1%3Fdistro=trixie"}