{"url":"http://public2.vulnerablecode.io/api/packages/5065?format=json","purl":"pkg:deb/debian/libexif@0.6.21-2","type":"deb","namespace":"debian","name":"libexif","version":"0.6.21-2","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"0.6.22-3","latest_non_vulnerable_version":"0.6.22-3","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5858?format=json","vulnerability_id":"VCID-342b-qpcn-w3df","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12767.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12767.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-12767","reference_id":"","reference_type":"","scores":[{"value":"0.00143","scoring_system":"epss","scoring_elements":"0.34197","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-12767"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12767","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12767"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1834950","reference_id":"1834950","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1834950"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=960199","reference_id":"960199","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=960199"},{"reference_url":"https://security.archlinux.org/AVG-1166","reference_id":"AVG-1166","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1166"},{"reference_url":"https://security.gentoo.org/glsa/202007-05","reference_id":"GLSA-202007-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202007-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4040","reference_id":"RHSA-2020:4040","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4766","reference_id":"RHSA-2020:4766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4766"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5727?format=json","purl":"pkg:deb/debian/libexif@0.6.22-3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3"}],"aliases":["CVE-2020-12767"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-342b-qpcn-w3df"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5855?format=json","vulnerability_id":"VCID-46rf-wxth-xbh1","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13114.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13114.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13114","reference_id":"","reference_type":"","scores":[{"value":"0.01066","scoring_system":"epss","scoring_elements":"0.78034","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13114"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13114","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13114"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1840350","reference_id":"1840350","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1840350"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961410","reference_id":"961410","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961410"},{"reference_url":"https://security.archlinux.org/AVG-1166","reference_id":"AVG-1166","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1166"},{"reference_url":"https://security.gentoo.org/glsa/202007-05","reference_id":"GLSA-202007-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202007-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4040","reference_id":"RHSA-2020:4040","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4766","reference_id":"RHSA-2020:4766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4766"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5727?format=json","purl":"pkg:deb/debian/libexif@0.6.22-3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3"}],"aliases":["CVE-2020-13114"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-46rf-wxth-xbh1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5862?format=json","vulnerability_id":"VCID-62d1-kaq2-h3d9","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7544.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7544.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7544","reference_id":"","reference_type":"","scores":[{"value":"0.00436","scoring_system":"epss","scoring_elements":"0.63271","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7544"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7544","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7544"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1494196","reference_id":"1494196","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1494196"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876466","reference_id":"876466","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876466"},{"reference_url":"https://security.archlinux.org/AVG-1166","reference_id":"AVG-1166","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1166"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5527?format=json","purl":"pkg:deb/debian/libexif@0.6.21-5.1%2Bdeb10u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-342b-qpcn-w3df"},{"vulnerability":"VCID-46rf-wxth-xbh1"},{"vulnerability":"VCID-bwmt-7yhf-zugp"},{"vulnerability":"VCID-hyj8-tmtk-h7ds"},{"vulnerability":"VCID-j5mu-rdx7-zug2"},{"vulnerability":"VCID-p9wb-yye6-pugf"},{"vulnerability":"VCID-phh9-yvjg-nygr"},{"vulnerability":"VCID-senj-exhy-uuek"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.21-5.1%252Bdeb10u5"}],"aliases":["CVE-2017-7544"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-62d1-kaq2-h3d9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5860?format=json","vulnerability_id":"VCID-bwmt-7yhf-zugp","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9278.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9278.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9278","reference_id":"","reference_type":"","scores":[{"value":"0.03749","scoring_system":"epss","scoring_elements":"0.88227","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-9278"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9278","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9278"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0181"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1789031","reference_id":"1789031","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1789031"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945948","reference_id":"945948","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945948"},{"reference_url":"https://security.archlinux.org/AVG-1166","reference_id":"AVG-1166","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1166"},{"reference_url":"https://security.gentoo.org/glsa/202007-05","reference_id":"GLSA-202007-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202007-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4040","reference_id":"RHSA-2020:4040","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4766","reference_id":"RHSA-2020:4766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4766"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5066?format=json","purl":"pkg:deb/debian/libexif@0.6.21-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-342b-qpcn-w3df"},{"vulnerability":"VCID-46rf-wxth-xbh1"},{"vulnerability":"VCID-62d1-kaq2-h3d9"},{"vulnerability":"VCID-bwmt-7yhf-zugp"},{"vulnerability":"VCID-g1pr-mb2d-d3aj"},{"vulnerability":"VCID-hyj8-tmtk-h7ds"},{"vulnerability":"VCID-j5mu-rdx7-zug2"},{"vulnerability":"VCID-p9wb-yye6-pugf"},{"vulnerability":"VCID-phh9-yvjg-nygr"},{"vulnerability":"VCID-senj-exhy-uuek"},{"vulnerability":"VCID-zudh-dpue-3qba"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.21-2%252Bdeb9u4"},{"url":"http://public2.vulnerablecode.io/api/packages/5527?format=json","purl":"pkg:deb/debian/libexif@0.6.21-5.1%2Bdeb10u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-342b-qpcn-w3df"},{"vulnerability":"VCID-46rf-wxth-xbh1"},{"vulnerability":"VCID-bwmt-7yhf-zugp"},{"vulnerability":"VCID-hyj8-tmtk-h7ds"},{"vulnerability":"VCID-j5mu-rdx7-zug2"},{"vulnerability":"VCID-p9wb-yye6-pugf"},{"vulnerability":"VCID-phh9-yvjg-nygr"},{"vulnerability":"VCID-senj-exhy-uuek"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.21-5.1%252Bdeb10u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5727?format=json","purl":"pkg:deb/debian/libexif@0.6.22-3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3"}],"aliases":["CVE-2019-9278"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bwmt-7yhf-zugp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5861?format=json","vulnerability_id":"VCID-g1pr-mb2d-d3aj","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20030.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20030.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-20030","reference_id":"","reference_type":"","scores":[{"value":"0.00998","scoring_system":"epss","scoring_elements":"0.77319","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-20030"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20030","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20030"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1663878","reference_id":"1663878","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1663878"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=918730","reference_id":"918730","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=918730"},{"reference_url":"https://security.archlinux.org/AVG-1166","reference_id":"AVG-1166","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1166"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5527?format=json","purl":"pkg:deb/debian/libexif@0.6.21-5.1%2Bdeb10u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-342b-qpcn-w3df"},{"vulnerability":"VCID-46rf-wxth-xbh1"},{"vulnerability":"VCID-bwmt-7yhf-zugp"},{"vulnerability":"VCID-hyj8-tmtk-h7ds"},{"vulnerability":"VCID-j5mu-rdx7-zug2"},{"vulnerability":"VCID-p9wb-yye6-pugf"},{"vulnerability":"VCID-phh9-yvjg-nygr"},{"vulnerability":"VCID-senj-exhy-uuek"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.21-5.1%252Bdeb10u5"}],"aliases":["CVE-2018-20030"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g1pr-mb2d-d3aj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5857?format=json","vulnerability_id":"VCID-hyj8-tmtk-h7ds","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13112.json","reference_id":"","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13112.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13112","reference_id":"","reference_type":"","scores":[{"value":"0.00972","scoring_system":"epss","scoring_elements":"0.76978","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13112"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13112","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13112"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1840344","reference_id":"1840344","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1840344"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961407","reference_id":"961407","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961407"},{"reference_url":"https://security.archlinux.org/AVG-1166","reference_id":"AVG-1166","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1166"},{"reference_url":"https://security.gentoo.org/glsa/202007-05","reference_id":"GLSA-202007-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202007-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2474","reference_id":"RHSA-2020:2474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2516","reference_id":"RHSA-2020:2516","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2516"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2549","reference_id":"RHSA-2020:2549","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2549"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2550","reference_id":"RHSA-2020:2550","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2550"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2672","reference_id":"RHSA-2020:2672","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2672"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5727?format=json","purl":"pkg:deb/debian/libexif@0.6.22-3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3"}],"aliases":["CVE-2020-13112"],"risk_score":4.1,"exploitability":"0.5","weighted_severity":"8.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hyj8-tmtk-h7ds"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7110?format=json","vulnerability_id":"VCID-j5mu-rdx7-zug2","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0452.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0452.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-0452","reference_id":"","reference_type":"","scores":[{"value":"0.16284","scoring_system":"epss","scoring_elements":"0.94951","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-0452"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0452","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0452"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1902004","reference_id":"1902004","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1902004"},{"reference_url":"https://security.archlinux.org/AVG-2376","reference_id":"AVG-2376","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2376"},{"reference_url":"https://security.gentoo.org/glsa/202011-19","reference_id":"GLSA-202011-19","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-19"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5393","reference_id":"RHSA-2020:5393","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5393"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5394","reference_id":"RHSA-2020:5394","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5394"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5395","reference_id":"RHSA-2020:5395","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5395"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5396","reference_id":"RHSA-2020:5396","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5396"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5402","reference_id":"RHSA-2020:5402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5402"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5527?format=json","purl":"pkg:deb/debian/libexif@0.6.21-5.1%2Bdeb10u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-342b-qpcn-w3df"},{"vulnerability":"VCID-46rf-wxth-xbh1"},{"vulnerability":"VCID-bwmt-7yhf-zugp"},{"vulnerability":"VCID-hyj8-tmtk-h7ds"},{"vulnerability":"VCID-j5mu-rdx7-zug2"},{"vulnerability":"VCID-p9wb-yye6-pugf"},{"vulnerability":"VCID-phh9-yvjg-nygr"},{"vulnerability":"VCID-senj-exhy-uuek"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.21-5.1%252Bdeb10u5"},{"url":"http://public2.vulnerablecode.io/api/packages/5727?format=json","purl":"pkg:deb/debian/libexif@0.6.22-3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3"}],"aliases":["CVE-2020-0452"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j5mu-rdx7-zug2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5859?format=json","vulnerability_id":"VCID-p9wb-yye6-pugf","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0093.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0093.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-0093","reference_id":"","reference_type":"","scores":[{"value":"0.00165","scoring_system":"epss","scoring_elements":"0.37263","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-0093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0093"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1852487","reference_id":"1852487","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1852487"},{"reference_url":"https://security.archlinux.org/AVG-1166","reference_id":"AVG-1166","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1166"},{"reference_url":"https://security.gentoo.org/glsa/202007-05","reference_id":"GLSA-202007-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202007-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4040","reference_id":"RHSA-2020:4040","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4766","reference_id":"RHSA-2020:4766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4766"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5727?format=json","purl":"pkg:deb/debian/libexif@0.6.22-3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3"}],"aliases":["CVE-2020-0093"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p9wb-yye6-pugf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5856?format=json","vulnerability_id":"VCID-phh9-yvjg-nygr","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13113.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13113.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13113","reference_id":"","reference_type":"","scores":[{"value":"0.00708","scoring_system":"epss","scoring_elements":"0.72558","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13113"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13113","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13113"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1840347","reference_id":"1840347","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1840347"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961409","reference_id":"961409","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961409"},{"reference_url":"https://security.archlinux.org/AVG-1166","reference_id":"AVG-1166","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1166"},{"reference_url":"https://security.gentoo.org/glsa/202007-05","reference_id":"GLSA-202007-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202007-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4040","reference_id":"RHSA-2020:4040","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4766","reference_id":"RHSA-2020:4766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4766"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5727?format=json","purl":"pkg:deb/debian/libexif@0.6.22-3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3"}],"aliases":["CVE-2020-13113"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-phh9-yvjg-nygr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7111?format=json","vulnerability_id":"VCID-senj-exhy-uuek","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0198.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0198.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-0198","reference_id":"","reference_type":"","scores":[{"value":"0.12017","scoring_system":"epss","scoring_elements":"0.93913","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-0198"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0198","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0198"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1847133","reference_id":"1847133","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1847133"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962345","reference_id":"962345","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962345"},{"reference_url":"https://security.archlinux.org/AVG-2376","reference_id":"AVG-2376","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2376"},{"reference_url":"https://security.gentoo.org/glsa/202011-19","reference_id":"GLSA-202011-19","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202011-19"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4766","reference_id":"RHSA-2020:4766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4766"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5727?format=json","purl":"pkg:deb/debian/libexif@0.6.22-3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3"}],"aliases":["CVE-2020-0198"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-senj-exhy-uuek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5863?format=json","vulnerability_id":"VCID-zudh-dpue-3qba","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6328.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6328.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6328","reference_id":"","reference_type":"","scores":[{"value":"0.0057","scoring_system":"epss","scoring_elements":"0.6896","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6328"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6328","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6328"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1366239","reference_id":"1366239","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1366239"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873022","reference_id":"873022","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873022"},{"reference_url":"https://security.archlinux.org/AVG-1166","reference_id":"AVG-1166","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1166"},{"reference_url":"https://security.gentoo.org/glsa/202007-05","reference_id":"GLSA-202007-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202007-05"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/5527?format=json","purl":"pkg:deb/debian/libexif@0.6.21-5.1%2Bdeb10u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-342b-qpcn-w3df"},{"vulnerability":"VCID-46rf-wxth-xbh1"},{"vulnerability":"VCID-bwmt-7yhf-zugp"},{"vulnerability":"VCID-hyj8-tmtk-h7ds"},{"vulnerability":"VCID-j5mu-rdx7-zug2"},{"vulnerability":"VCID-p9wb-yye6-pugf"},{"vulnerability":"VCID-phh9-yvjg-nygr"},{"vulnerability":"VCID-senj-exhy-uuek"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.21-5.1%252Bdeb10u5"}],"aliases":["CVE-2016-6328"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zudh-dpue-3qba"}],"fixing_vulnerabilities":[],"risk_score":"4.4","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.21-2"}