{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","type":"deb","namespace":"debian","name":"libextractor","version":"1:1.13-10","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/197845?format=json","vulnerability_id":"VCID-2vxd-sm4c-skcg","summary":"denial of service","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15922","reference_id":"","reference_type":"","scores":[{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39026","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39198","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15922"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15922","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15922"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880016","reference_id":"880016","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880016"},{"reference_url":"https://security.archlinux.org/ASA-201711-16","reference_id":"ASA-201711-16","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201711-16"},{"reference_url":"https://security.archlinux.org/AVG-471","reference_id":"AVG-471","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-471"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52839?format=json","purl":"pkg:deb/debian/libextractor@1:1.6-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.6-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2017-15922"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2vxd-sm4c-skcg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175732?format=json","vulnerability_id":"VCID-2yrj-fc9y-6ybr","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-20431","reference_id":"","reference_type":"","scores":[{"value":"0.00572","scoring_system":"epss","scoring_elements":"0.69152","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00572","scoring_system":"epss","scoring_elements":"0.69245","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-20431"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20430","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20430"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20431","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20431"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917213","reference_id":"917213","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917213"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52851?format=json","purl":"pkg:deb/debian/libextractor@1:1.8-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.8-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2018-20431"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2yrj-fc9y-6ybr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185132?format=json","vulnerability_id":"VCID-46af-j6rb-ubaa","summary":"libextractor is vulnerable to two heap overflow vulnerabilities which could\n    lead to the execution of arbitrary code.","references":[{"reference_url":"http://gnunet.org/libextractor","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://gnunet.org/libextractor"},{"reference_url":"http://gnunet.org/libextractor/","reference_id":"","reference_type":"","scores":[],"url":"http://gnunet.org/libextractor/"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-2458","reference_id":"","reference_type":"","scores":[{"value":"0.30953","scoring_system":"epss","scoring_elements":"0.96856","published_at":"2026-06-11T12:55:00Z"},{"value":"0.30953","scoring_system":"epss","scoring_elements":"0.96867","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-2458"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2458","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2458"},{"reference_url":"http://secunia.com/advisories/20150","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/20150"},{"reference_url":"http://secunia.com/advisories/20160","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/20160"},{"reference_url":"http://secunia.com/advisories/20326","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/20326"},{"reference_url":"http://secunia.com/advisories/20457","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/20457"},{"reference_url":"http://securityreason.com/securityalert/916","reference_id":"","reference_type":"","scores":[],"url":"http://securityreason.com/securityalert/916"},{"reference_url":"http://securitytracker.com/id?1016118","reference_id":"","reference_type":"","scores":[],"url":"http://securitytracker.com/id?1016118"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/26531","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/26531"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/26532","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/26532"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/extractor/PYSEC-2006-4.yaml","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/extractor/PYSEC-2006-4.yaml"},{"reference_url":"http://www.debian.org/security/2006/dsa-1081","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.debian.org/security/2006/dsa-1081"},{"reference_url":"http://www.gentoo.org/security/en/glsa/glsa-200605-14.xml","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.gentoo.org/security/en/glsa/glsa-200605-14.xml"},{"reference_url":"http://www.novell.com/linux/security/advisories/2006-06-02.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.novell.com/linux/security/advisories/2006-06-02.html"},{"reference_url":"http://www.securityfocus.com/archive/1/434288/100/0/threaded","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/archive/1/434288/100/0/threaded"},{"reference_url":"http://www.securityfocus.com/bid/18021","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/18021"},{"reference_url":"http://www.vupen.com/english/advisories/2006/1848","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2006/1848"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2006-2458","reference_id":"CVE-2006-2458","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2006-2458"},{"reference_url":"https://github.com/advisories/GHSA-f836-7jqw-3684","reference_id":"GHSA-f836-7jqw-3684","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-f836-7jqw-3684"},{"reference_url":"https://security.gentoo.org/glsa/200605-14","reference_id":"GLSA-200605-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200605-14"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/1801.txt","reference_id":"OSVDB-25664;CVE-2006-2458;OSVDB-25663","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/1801.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52769?format=json","purl":"pkg:deb/debian/libextractor@0.5.14-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.14-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2006-2458","GHSA-f836-7jqw-3684","PYSEC-2006-4"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-46af-j6rb-ubaa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206932?format=json","vulnerability_id":"VCID-5wmy-bct1-g3e5","summary":"GNU Libextractor through 1.9 has a heap-based buffer over-read in the function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15531","reference_id":"","reference_type":"","scores":[{"value":"0.01085","scoring_system":"epss","scoring_elements":"0.78295","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01085","scoring_system":"epss","scoring_elements":"0.78363","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15531"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15531","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15531"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935553","reference_id":"935553","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935553"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52872?format=json","purl":"pkg:deb/debian/libextractor@1:1.9-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.9-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2019-15531"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5wmy-bct1-g3e5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/204937?format=json","vulnerability_id":"VCID-64ne-dyy5-ykd1","summary":"In GNU Libextractor 1.4, there is a NULL Pointer Dereference in flac_metadata in flac_extractor.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15267","reference_id":"","reference_type":"","scores":[{"value":"0.0066","scoring_system":"epss","scoring_elements":"0.71587","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0066","scoring_system":"epss","scoring_elements":"0.71672","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15267"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15267","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15267"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878314","reference_id":"878314","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878314"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52813?format=json","purl":"pkg:deb/debian/libextractor@1:1.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2017-15267"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-64ne-dyy5-ykd1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/181259?format=json","vulnerability_id":"VCID-69js-yzx7-ckaa","summary":"KPdf and KWord both include vulnerable Xpdf code to handle PDF files,\n    making them vulnerable to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3626.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3626.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3626","reference_id":"","reference_type":"","scores":[{"value":"0.09167","scoring_system":"epss","scoring_elements":"0.92874","published_at":"2026-06-11T12:55:00Z"},{"value":"0.09167","scoring_system":"epss","scoring_elements":"0.92897","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3626"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3626","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3626"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617828","reference_id":"1617828","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617828"},{"reference_url":"https://security.gentoo.org/glsa/200601-02","reference_id":"GLSA-200601-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200601-02"},{"reference_url":"https://security.gentoo.org/glsa/200601-17","reference_id":"GLSA-200601-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200601-17"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:840","reference_id":"RHSA-2005:840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:868","reference_id":"RHSA-2005:868","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:868"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0160","reference_id":"RHSA-2006:0160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0163","reference_id":"RHSA-2006:0163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0177","reference_id":"RHSA-2006:0177","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0177"},{"reference_url":"https://usn.ubuntu.com/236-1/","reference_id":"USN-236-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/236-1/"},{"reference_url":"https://usn.ubuntu.com/236-2/","reference_id":"USN-236-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/236-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52767?format=json","purl":"pkg:deb/debian/libextractor@0.5.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2005-3626"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-69js-yzx7-ckaa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185545?format=json","vulnerability_id":"VCID-8qpz-9suz-nkas","summary":"Poppler and various KDE components are vulnerable to multiple memory\n    management issues possibly resulting in the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5392.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5392.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5392","reference_id":"","reference_type":"","scores":[{"value":"0.06485","scoring_system":"epss","scoring_elements":"0.91299","published_at":"2026-06-11T12:55:00Z"},{"value":"0.06485","scoring_system":"epss","scoring_elements":"0.91329","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5392"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=345111","reference_id":"345111","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=345111"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450628","reference_id":"450628","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450628"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450629","reference_id":"450629","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450629"},{"reference_url":"https://security.gentoo.org/glsa/200711-22","reference_id":"GLSA-200711-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200711-22"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1021","reference_id":"RHSA-2007:1021","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1022","reference_id":"RHSA-2007:1022","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1022"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1024","reference_id":"RHSA-2007:1024","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1024"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1025","reference_id":"RHSA-2007:1025","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1025"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1026","reference_id":"RHSA-2007:1026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1027","reference_id":"RHSA-2007:1027","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1027"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1029","reference_id":"RHSA-2007:1029","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1029"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1030","reference_id":"RHSA-2007:1030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1030"},{"reference_url":"https://usn.ubuntu.com/542-1/","reference_id":"USN-542-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/542-1/"},{"reference_url":"https://usn.ubuntu.com/542-2/","reference_id":"USN-542-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/542-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52777?format=json","purl":"pkg:deb/debian/libextractor@0.5.12-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.12-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2007-5392"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8qpz-9suz-nkas"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/181261?format=json","vulnerability_id":"VCID-8wfu-uvve-hba4","summary":"KPdf and KWord both include vulnerable Xpdf code to handle PDF files,\n    making them vulnerable to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3628.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3628.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3628","reference_id":"","reference_type":"","scores":[{"value":"0.02683","scoring_system":"epss","scoring_elements":"0.86177","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02683","scoring_system":"epss","scoring_elements":"0.86227","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3628"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617830","reference_id":"1617830","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617830"},{"reference_url":"https://security.gentoo.org/glsa/200601-02","reference_id":"GLSA-200601-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200601-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:840","reference_id":"RHSA-2005:840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:867","reference_id":"RHSA-2005:867","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:867"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:868","reference_id":"RHSA-2005:868","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:868"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:878","reference_id":"RHSA-2005:878","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:878"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0160","reference_id":"RHSA-2006:0160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0160"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52767?format=json","purl":"pkg:deb/debian/libextractor@0.5.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2005-3628"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8wfu-uvve-hba4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/204941?format=json","vulnerability_id":"VCID-9676-xrt5-1uhb","summary":"In GNU Libextractor 1.4, there is a NULL Pointer Dereference in the EXTRACTOR_nsf_extract_method function of plugins/nsf_extractor.c.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15600","reference_id":"","reference_type":"","scores":[{"value":"0.01659","scoring_system":"epss","scoring_elements":"0.82464","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01659","scoring_system":"epss","scoring_elements":"0.82526","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15600"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15600","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15600"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52813?format=json","purl":"pkg:deb/debian/libextractor@1:1.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2017-15600"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9676-xrt5-1uhb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/181260?format=json","vulnerability_id":"VCID-9rdv-f3ft-6bd7","summary":"KPdf and KWord both include vulnerable Xpdf code to handle PDF files,\n    making them vulnerable to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3627.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3627.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3627","reference_id":"","reference_type":"","scores":[{"value":"0.04327","scoring_system":"epss","scoring_elements":"0.89152","published_at":"2026-06-11T12:55:00Z"},{"value":"0.04327","scoring_system":"epss","scoring_elements":"0.8919","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3627"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3627","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3627"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617829","reference_id":"1617829","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617829"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346076","reference_id":"346076","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346076"},{"reference_url":"https://security.gentoo.org/glsa/200601-02","reference_id":"GLSA-200601-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200601-02"},{"reference_url":"https://security.gentoo.org/glsa/200601-17","reference_id":"GLSA-200601-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200601-17"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:840","reference_id":"RHSA-2005:840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:868","reference_id":"RHSA-2005:868","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:868"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0160","reference_id":"RHSA-2006:0160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0163","reference_id":"RHSA-2006:0163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0177","reference_id":"RHSA-2006:0177","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0177"},{"reference_url":"https://usn.ubuntu.com/236-1/","reference_id":"USN-236-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/236-1/"},{"reference_url":"https://usn.ubuntu.com/236-2/","reference_id":"USN-236-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/236-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52767?format=json","purl":"pkg:deb/debian/libextractor@0.5.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2005-3627"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9rdv-f3ft-6bd7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/181258?format=json","vulnerability_id":"VCID-bbfr-73v1-a3an","summary":"KPdf and KWord both include vulnerable Xpdf code to handle PDF files,\n    making them vulnerable to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3625.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3625.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3625","reference_id":"","reference_type":"","scores":[{"value":"0.11286","scoring_system":"epss","scoring_elements":"0.93696","published_at":"2026-06-11T12:55:00Z"},{"value":"0.11286","scoring_system":"epss","scoring_elements":"0.93716","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3625"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3625","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3625"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617827","reference_id":"1617827","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617827"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346076","reference_id":"346076","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346076"},{"reference_url":"https://security.gentoo.org/glsa/200601-02","reference_id":"GLSA-200601-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200601-02"},{"reference_url":"https://security.gentoo.org/glsa/200601-17","reference_id":"GLSA-200601-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200601-17"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:840","reference_id":"RHSA-2005:840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:868","reference_id":"RHSA-2005:868","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:868"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0160","reference_id":"RHSA-2006:0160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0163","reference_id":"RHSA-2006:0163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0177","reference_id":"RHSA-2006:0177","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0177"},{"reference_url":"https://usn.ubuntu.com/236-1/","reference_id":"USN-236-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/236-1/"},{"reference_url":"https://usn.ubuntu.com/236-2/","reference_id":"USN-236-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/236-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52767?format=json","purl":"pkg:deb/debian/libextractor@0.5.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2005-3625"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bbfr-73v1-a3an"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175214?format=json","vulnerability_id":"VCID-esqz-u2gy-jbas","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14347","reference_id":"","reference_type":"","scores":[{"value":"0.00566","scoring_system":"epss","scoring_elements":"0.68926","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00566","scoring_system":"epss","scoring_elements":"0.69018","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14347","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16430","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16430"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904905","reference_id":"904905","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904905"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52848?format=json","purl":"pkg:deb/debian/libextractor@1:1.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2018-14347"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-esqz-u2gy-jbas"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175731?format=json","vulnerability_id":"VCID-fcnw-3shq-4kfd","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-20430","reference_id":"","reference_type":"","scores":[{"value":"0.0057","scoring_system":"epss","scoring_elements":"0.69079","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0057","scoring_system":"epss","scoring_elements":"0.69171","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-20430"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20430","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20430"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20431","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20431"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917214","reference_id":"917214","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917214"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52851?format=json","purl":"pkg:deb/debian/libextractor@1:1.8-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.8-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2018-20430"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fcnw-3shq-4kfd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/204936?format=json","vulnerability_id":"VCID-g8xf-p22u-xuea","summary":"In GNU Libextractor 1.4, there is a Divide-By-Zero in EXTRACTOR_wav_extract_method in wav_extractor.c via a zero sample rate.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15266","reference_id":"","reference_type":"","scores":[{"value":"0.00363","scoring_system":"epss","scoring_elements":"0.58821","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00363","scoring_system":"epss","scoring_elements":"0.58933","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15266"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15266","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15266"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878314","reference_id":"878314","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878314"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52813?format=json","purl":"pkg:deb/debian/libextractor@1:1.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2017-15266"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g8xf-p22u-xuea"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176795?format=json","vulnerability_id":"VCID-kvrd-wcyy-wugd","summary":"Multiple vulnerabilities have been discovered in Xpdf, GPdf, CUPS and\n    Poppler potentially resulting in the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3191.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3191.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3191","reference_id":"","reference_type":"","scores":[{"value":"0.03031","scoring_system":"epss","scoring_elements":"0.8695","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03031","scoring_system":"epss","scoring_elements":"0.86996","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3191"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3191","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3191"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617796","reference_id":"1617796","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617796"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342281","reference_id":"342281","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342281"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342288","reference_id":"342288","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342288"},{"reference_url":"https://security.gentoo.org/glsa/200512-08","reference_id":"GLSA-200512-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200512-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:840","reference_id":"RHSA-2005:840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:867","reference_id":"RHSA-2005:867","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:867"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:868","reference_id":"RHSA-2005:868","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:868"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:878","reference_id":"RHSA-2005:878","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:878"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0160","reference_id":"RHSA-2006:0160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0160"},{"reference_url":"https://usn.ubuntu.com/227-1/","reference_id":"USN-227-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/227-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52763?format=json","purl":"pkg:deb/debian/libextractor@0.5.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.8-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2005-3191"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kvrd-wcyy-wugd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/177044?format=json","vulnerability_id":"VCID-maks-dh3b-s3ar","summary":"PDFKit and ImageKits are vulnerable to an integer overflow and a stack\n    overflow allowing for the user-assisted execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3387.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3387.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3387","reference_id":"","reference_type":"","scores":[{"value":"0.25208","scoring_system":"epss","scoring_elements":"0.96315","published_at":"2026-06-11T12:55:00Z"},{"value":"0.25208","scoring_system":"epss","scoring_elements":"0.96326","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3387"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=248194","reference_id":"248194","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=248194"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=435460","reference_id":"435460","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=435460"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=435462","reference_id":"435462","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=435462"},{"reference_url":"https://security.gentoo.org/glsa/200709-12","reference_id":"GLSA-200709-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200709-12"},{"reference_url":"https://security.gentoo.org/glsa/200709-17","reference_id":"GLSA-200709-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200709-17"},{"reference_url":"https://security.gentoo.org/glsa/200710-08","reference_id":"GLSA-200710-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200710-08"},{"reference_url":"https://security.gentoo.org/glsa/200710-20","reference_id":"GLSA-200710-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200710-20"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0720","reference_id":"RHSA-2007:0720","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0720"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0729","reference_id":"RHSA-2007:0729","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0730","reference_id":"RHSA-2007:0730","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0730"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0731","reference_id":"RHSA-2007:0731","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0731"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0732","reference_id":"RHSA-2007:0732","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0732"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0735","reference_id":"RHSA-2007:0735","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0735"},{"reference_url":"https://usn.ubuntu.com/496-1/","reference_id":"USN-496-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/496-1/"},{"reference_url":"https://usn.ubuntu.com/496-2/","reference_id":"USN-496-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/496-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52777?format=json","purl":"pkg:deb/debian/libextractor@0.5.12-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.12-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2007-3387"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-maks-dh3b-s3ar"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176797?format=json","vulnerability_id":"VCID-myqv-mjx7-67hj","summary":"Multiple vulnerabilities have been discovered in Xpdf, GPdf, CUPS and\n    Poppler potentially resulting in the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3193.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3193.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3193","reference_id":"","reference_type":"","scores":[{"value":"0.03031","scoring_system":"epss","scoring_elements":"0.8695","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03031","scoring_system":"epss","scoring_elements":"0.86996","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3193"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3193","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3193"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617798","reference_id":"1617798","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617798"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342281","reference_id":"342281","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342281"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342288","reference_id":"342288","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342288"},{"reference_url":"https://security.gentoo.org/glsa/200512-08","reference_id":"GLSA-200512-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200512-08"},{"reference_url":"https://security.gentoo.org/glsa/200603-02","reference_id":"GLSA-200603-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200603-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:840","reference_id":"RHSA-2005:840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:867","reference_id":"RHSA-2005:867","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:867"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:868","reference_id":"RHSA-2005:868","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:868"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:878","reference_id":"RHSA-2005:878","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:878"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0160","reference_id":"RHSA-2006:0160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0160"},{"reference_url":"https://usn.ubuntu.com/227-1/","reference_id":"USN-227-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/227-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52763?format=json","purl":"pkg:deb/debian/libextractor@0.5.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.8-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2005-3193"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-myqv-mjx7-67hj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/204943?format=json","vulnerability_id":"VCID-nr74-rudw-63bq","summary":"In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the EXTRACTOR_nsfe_extract_method function in plugins/nsfe_extractor.c, leading to an infinite loop for a crafted size.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15602","reference_id":"","reference_type":"","scores":[{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61632","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61735","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15602"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15602","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15602"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52813?format=json","purl":"pkg:deb/debian/libextractor@1:1.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2017-15602"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nr74-rudw-63bq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200127?format=json","vulnerability_id":"VCID-nuce-p2rd-4qg4","summary":"xpdf and kpdf do not properly validate the \"loca\" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a \"broken\" loca table, which causes a large temporary file to be created when xpdf attempts to reconstruct the information.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2097.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2097.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-2097","reference_id":"","reference_type":"","scores":[{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22026","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00072","scoring_system":"epss","scoring_elements":"0.22217","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-2097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2097"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617684","reference_id":"1617684","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617684"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=322462","reference_id":"322462","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=322462"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=324464","reference_id":"324464","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=324464"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:670","reference_id":"RHSA-2005:670","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:670"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:671","reference_id":"RHSA-2005:671","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:671"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:706","reference_id":"RHSA-2005:706","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:706"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:708","reference_id":"RHSA-2005:708","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:708"},{"reference_url":"https://usn.ubuntu.com/163-1/","reference_id":"USN-163-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/163-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52763?format=json","purl":"pkg:deb/debian/libextractor@0.5.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.8-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2005-2097"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nuce-p2rd-4qg4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176755?format=json","vulnerability_id":"VCID-q2kx-759k-4ydw","summary":"Multiple vulnerabilities have been found in GraphicsMagick,\n    allowing remote attackers to execute arbitrary code or cause a Denial of\n    Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3736.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3736.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3736","reference_id":"","reference_type":"","scores":[{"value":"0.00121","scoring_system":"epss","scoring_elements":"0.30686","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00121","scoring_system":"epss","scoring_elements":"0.30884","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3736"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3736","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3736"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=537941","reference_id":"537941","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=537941"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559797","reference_id":"559797","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559797"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559801","reference_id":"559801","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559801"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559806","reference_id":"559806","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559806"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559809","reference_id":"559809","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559809"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559811","reference_id":"559811","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559811"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559814","reference_id":"559814","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559814"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559815","reference_id":"559815","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559815"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559816","reference_id":"559816","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559816"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559819","reference_id":"559819","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559819"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559822","reference_id":"559822","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559822"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559824","reference_id":"559824","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559824"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559825","reference_id":"559825","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559825"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559826","reference_id":"559826","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559826"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559829","reference_id":"559829","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559829"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559831","reference_id":"559831","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559831"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559832","reference_id":"559832","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559832"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559833","reference_id":"559833","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559833"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559834","reference_id":"559834","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559834"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559835","reference_id":"559835","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559835"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559836","reference_id":"559836","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559836"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559837","reference_id":"559837","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559837"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559840","reference_id":"559840","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559840"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559844","reference_id":"559844","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559844"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559845","reference_id":"559845","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559845"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702436","reference_id":"702436","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702436"},{"reference_url":"https://security.gentoo.org/glsa/201311-10","reference_id":"GLSA-201311-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201311-10"},{"reference_url":"https://security.gentoo.org/glsa/201412-08","reference_id":"GLSA-201412-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1646","reference_id":"RHSA-2009:1646","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1646"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0039","reference_id":"RHSA-2010:0039","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0039"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52802?format=json","purl":"pkg:deb/debian/libextractor@0.5.23%2Bdfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.23%252Bdfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2009-3736"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q2kx-759k-4ydw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/204942?format=json","vulnerability_id":"VCID-qexj-geex-fygy","summary":"In GNU Libextractor 1.4, there is a heap-based buffer overflow in the EXTRACTOR_png_extract_method function in plugins/png_extractor.c, related to processiTXt and stndup.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15601","reference_id":"","reference_type":"","scores":[{"value":"0.00432","scoring_system":"epss","scoring_elements":"0.63135","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00432","scoring_system":"epss","scoring_elements":"0.63236","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15601"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15601","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15601"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52813?format=json","purl":"pkg:deb/debian/libextractor@1:1.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2017-15601"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qexj-geex-fygy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176796?format=json","vulnerability_id":"VCID-u7rb-fd7b-yyfr","summary":"Multiple vulnerabilities have been discovered in Xpdf, GPdf, CUPS and\n    Poppler potentially resulting in the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3192.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3192.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3192","reference_id":"","reference_type":"","scores":[{"value":"0.12279","scoring_system":"epss","scoring_elements":"0.94021","published_at":"2026-06-11T12:55:00Z"},{"value":"0.12279","scoring_system":"epss","scoring_elements":"0.94041","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3192"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3192","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3192"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617797","reference_id":"1617797","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617797"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342281","reference_id":"342281","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342281"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342288","reference_id":"342288","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=342288"},{"reference_url":"https://security.gentoo.org/glsa/200512-08","reference_id":"GLSA-200512-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200512-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:840","reference_id":"RHSA-2005:840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:867","reference_id":"RHSA-2005:867","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:867"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:868","reference_id":"RHSA-2005:868","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:868"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:878","reference_id":"RHSA-2005:878","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:878"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0160","reference_id":"RHSA-2006:0160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0160"},{"reference_url":"https://usn.ubuntu.com/227-1/","reference_id":"USN-227-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/227-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52763?format=json","purl":"pkg:deb/debian/libextractor@0.5.8-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.8-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2005-3192"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u7rb-fd7b-yyfr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175215?format=json","vulnerability_id":"VCID-v4nt-wv4f-5few","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-16430","reference_id":"","reference_type":"","scores":[{"value":"0.01358","scoring_system":"epss","scoring_elements":"0.80564","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01358","scoring_system":"epss","scoring_elements":"0.80625","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-16430"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14347","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16430","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16430"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907987","reference_id":"907987","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907987"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52848?format=json","purl":"pkg:deb/debian/libextractor@1:1.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2018-16430"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v4nt-wv4f-5few"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/181257?format=json","vulnerability_id":"VCID-vacp-4vnh-1qgh","summary":"KPdf and KWord both include vulnerable Xpdf code to handle PDF files,\n    making them vulnerable to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3624.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3624.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3624","reference_id":"","reference_type":"","scores":[{"value":"0.07223","scoring_system":"epss","scoring_elements":"0.91806","published_at":"2026-06-11T12:55:00Z"},{"value":"0.07223","scoring_system":"epss","scoring_elements":"0.91833","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3624"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617826","reference_id":"1617826","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617826"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346076","reference_id":"346076","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=346076"},{"reference_url":"https://security.gentoo.org/glsa/200601-02","reference_id":"GLSA-200601-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200601-02"},{"reference_url":"https://security.gentoo.org/glsa/200601-17","reference_id":"GLSA-200601-17","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200601-17"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:840","reference_id":"RHSA-2005:840","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:840"},{"reference_url":"https://access.redhat.com/errata/RHSA-2005:868","reference_id":"RHSA-2005:868","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2005:868"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0160","reference_id":"RHSA-2006:0160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0163","reference_id":"RHSA-2006:0163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0177","reference_id":"RHSA-2006:0177","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0177"},{"reference_url":"https://usn.ubuntu.com/236-1/","reference_id":"USN-236-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/236-1/"},{"reference_url":"https://usn.ubuntu.com/236-2/","reference_id":"USN-236-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/236-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52767?format=json","purl":"pkg:deb/debian/libextractor@0.5.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2005-3624"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vacp-4vnh-1qgh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/175213?format=json","vulnerability_id":"VCID-w67g-t26s-f3ed","summary":"security update","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14346","reference_id":"","reference_type":"","scores":[{"value":"0.00496","scoring_system":"epss","scoring_elements":"0.66257","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00496","scoring_system":"epss","scoring_elements":"0.66351","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14347","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16430","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16430"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904903","reference_id":"904903","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904903"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52848?format=json","purl":"pkg:deb/debian/libextractor@1:1.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2018-14346"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w67g-t26s-f3ed"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185544?format=json","vulnerability_id":"VCID-wrr1-g4pm-57am","summary":"Poppler and various KDE components are vulnerable to multiple memory\n    management issues possibly resulting in the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4352.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4352.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4352","reference_id":"","reference_type":"","scores":[{"value":"0.25229","scoring_system":"epss","scoring_elements":"0.96317","published_at":"2026-06-11T12:55:00Z"},{"value":"0.25229","scoring_system":"epss","scoring_elements":"0.96328","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4352"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=345101","reference_id":"345101","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=345101"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450628","reference_id":"450628","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450628"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450629","reference_id":"450629","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450629"},{"reference_url":"https://security.gentoo.org/glsa/200711-22","reference_id":"GLSA-200711-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200711-22"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1021","reference_id":"RHSA-2007:1021","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1022","reference_id":"RHSA-2007:1022","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1022"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1024","reference_id":"RHSA-2007:1024","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1024"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1025","reference_id":"RHSA-2007:1025","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1025"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1026","reference_id":"RHSA-2007:1026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1027","reference_id":"RHSA-2007:1027","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1027"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1029","reference_id":"RHSA-2007:1029","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1029"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1030","reference_id":"RHSA-2007:1030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1030"},{"reference_url":"https://usn.ubuntu.com/542-1/","reference_id":"USN-542-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/542-1/"},{"reference_url":"https://usn.ubuntu.com/542-2/","reference_id":"USN-542-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/542-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52777?format=json","purl":"pkg:deb/debian/libextractor@0.5.12-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.12-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2007-4352"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wrr1-g4pm-57am"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/197779?format=json","vulnerability_id":"VCID-zgg6-45g4-pbgh","summary":"denial of service","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-17440","reference_id":"","reference_type":"","scores":[{"value":"0.00531","scoring_system":"epss","scoring_elements":"0.67688","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00531","scoring_system":"epss","scoring_elements":"0.67777","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-17440"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17440","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17440"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883528","reference_id":"883528","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883528"},{"reference_url":"https://security.archlinux.org/ASA-201807-16","reference_id":"ASA-201807-16","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201807-16"},{"reference_url":"https://security.archlinux.org/AVG-541","reference_id":"AVG-541","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-541"},{"reference_url":"https://usn.ubuntu.com/4641-1/","reference_id":"USN-4641-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4641-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52839?format=json","purl":"pkg:deb/debian/libextractor@1:1.6-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.6-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2017-17440"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zgg6-45g4-pbgh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/181426?format=json","vulnerability_id":"VCID-zkqh-4s2u-87ha","summary":"KPdf includes vulnerable Xpdf code to handle PDF files, making it\n    vulnerable to the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-0301.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-0301.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-0301","reference_id":"","reference_type":"","scores":[{"value":"0.03084","scoring_system":"epss","scoring_elements":"0.87065","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03084","scoring_system":"epss","scoring_elements":"0.87111","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-0301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0301"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617882","reference_id":"1617882","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617882"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=350785","reference_id":"350785","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=350785"},{"reference_url":"https://security.gentoo.org/glsa/200602-04","reference_id":"GLSA-200602-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200602-04"},{"reference_url":"https://security.gentoo.org/glsa/200602-05","reference_id":"GLSA-200602-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200602-05"},{"reference_url":"https://security.gentoo.org/glsa/200602-12","reference_id":"GLSA-200602-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200602-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0201","reference_id":"RHSA-2006:0201","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0201"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0206","reference_id":"RHSA-2006:0206","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0206"},{"reference_url":"https://usn.ubuntu.com/249-1/","reference_id":"USN-249-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/249-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52768?format=json","purl":"pkg:deb/debian/libextractor@0.5.10-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.10-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2006-0301"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zkqh-4s2u-87ha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185546?format=json","vulnerability_id":"VCID-zmkr-y4ax-9ffc","summary":"Poppler and various KDE components are vulnerable to multiple memory\n    management issues possibly resulting in the execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5393.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5393.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5393","reference_id":"","reference_type":"","scores":[{"value":"0.14085","scoring_system":"epss","scoring_elements":"0.94518","published_at":"2026-06-11T12:55:00Z"},{"value":"0.14085","scoring_system":"epss","scoring_elements":"0.94537","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5393"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=345121","reference_id":"345121","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=345121"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450628","reference_id":"450628","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450628"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450629","reference_id":"450629","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450629"},{"reference_url":"https://security.gentoo.org/glsa/200711-22","reference_id":"GLSA-200711-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200711-22"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1021","reference_id":"RHSA-2007:1021","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1021"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1022","reference_id":"RHSA-2007:1022","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1022"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1023","reference_id":"RHSA-2007:1023","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1023"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1024","reference_id":"RHSA-2007:1024","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1024"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1025","reference_id":"RHSA-2007:1025","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1025"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1026","reference_id":"RHSA-2007:1026","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1026"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1027","reference_id":"RHSA-2007:1027","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1027"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1028","reference_id":"RHSA-2007:1028","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1028"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1029","reference_id":"RHSA-2007:1029","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1029"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1030","reference_id":"RHSA-2007:1030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1031","reference_id":"RHSA-2007:1031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1051","reference_id":"RHSA-2007:1051","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1051"},{"reference_url":"https://usn.ubuntu.com/542-1/","reference_id":"USN-542-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/542-1/"},{"reference_url":"https://usn.ubuntu.com/542-2/","reference_id":"USN-542-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/542-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52777?format=json","purl":"pkg:deb/debian/libextractor@0.5.12-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.12-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52764?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52762?format=json","purl":"pkg:deb/debian/libextractor@1:1.11-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52766?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52765?format=json","purl":"pkg:deb/debian/libextractor@1:1.13-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}],"aliases":["CVE-2007-5393"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zmkr-y4ax-9ffc"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie"}