{"url":"http://public2.vulnerablecode.io/api/packages/512507?format=json","purl":"pkg:deb/debian/libupnp@1.2.1-2","type":"deb","namespace":"debian","name":"libupnp","version":"1.2.1-2","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"1:1.6.19+git20141001-1+deb8u1","latest_non_vulnerable_version":"1:1.6.19+git20141001-1+deb8u1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184669?format=json","vulnerability_id":"VCID-p4mt-txk7-1yak","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6255","reference_id":"","reference_type":"","scores":[{"value":"0.40912","scoring_system":"epss","scoring_elements":"0.97453","published_at":"2026-06-04T12:55:00Z"},{"value":"0.40912","scoring_system":"epss","scoring_elements":"0.97459","published_at":"2026-06-05T12:55:00Z"},{"value":"0.40912","scoring_system":"epss","scoring_elements":"0.9746","published_at":"2026-06-07T12:55:00Z"},{"value":"0.40912","scoring_system":"epss","scoring_elements":"0.97461","published_at":"2026-06-08T12:55:00Z"},{"value":"0.40912","scoring_system":"epss","scoring_elements":"0.97462","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6255"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6255","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6255"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8863","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8863"},{"reference_url":"https://security.gentoo.org/glsa/201701-52","reference_id":"GLSA-201701-52","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-52"},{"reference_url":"https://usn.ubuntu.com/USN-4794-1/","reference_id":"USN-USN-4794-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-4794-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/512512?format=json","purl":"pkg:deb/debian/libupnp@1:1.6.19%2Bgit20141001-1%2Bdeb8u1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libupnp@1:1.6.19%252Bgit20141001-1%252Bdeb8u1"}],"aliases":["CVE-2016-6255"],"risk_score":0.8,"exploitability":"2.0","weighted_severity":"0.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p4mt-txk7-1yak"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185884?format=json","vulnerability_id":"VCID-xtbj-1hxu-9uhq","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8863","reference_id":"","reference_type":"","scores":[{"value":"0.16075","scoring_system":"epss","scoring_elements":"0.9491","published_at":"2026-06-04T12:55:00Z"},{"value":"0.16075","scoring_system":"epss","scoring_elements":"0.94919","published_at":"2026-06-05T12:55:00Z"},{"value":"0.16075","scoring_system":"epss","scoring_elements":"0.9492","published_at":"2026-06-07T12:55:00Z"},{"value":"0.16075","scoring_system":"epss","scoring_elements":"0.94921","published_at":"2026-06-08T12:55:00Z"},{"value":"0.16075","scoring_system":"epss","scoring_elements":"0.94925","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-8863"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6255","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6255"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8863","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8863"},{"reference_url":"https://security.gentoo.org/glsa/201701-52","reference_id":"GLSA-201701-52","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-52"},{"reference_url":"https://usn.ubuntu.com/USN-4794-1/","reference_id":"USN-USN-4794-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-4794-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/512512?format=json","purl":"pkg:deb/debian/libupnp@1:1.6.19%2Bgit20141001-1%2Bdeb8u1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libupnp@1:1.6.19%252Bgit20141001-1%252Bdeb8u1"}],"aliases":["CVE-2016-8863"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xtbj-1hxu-9uhq"}],"fixing_vulnerabilities":[],"risk_score":"0.8","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libupnp@1.2.1-2"}