{"url":"http://public2.vulnerablecode.io/api/packages/56232?format=json","purl":"pkg:deb/debian/libsieve@2.2.6-6?distro=trixie","type":"deb","namespace":"debian","name":"libsieve","version":"2.2.6-6","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.2.6-9","latest_non_vulnerable_version":"2.2.6-9","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/217848?format=json","vulnerability_id":"VCID-3ekw-q4tf-d7ex","summary":"Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier allow remote attackers to execute arbitrary code via (1) a long header name, (2) a long IMAP flag, or (3) a script that generates a large number of errors that overflow the resulting error string.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2002-2253","reference_id":"","reference_type":"","scores":[{"value":"0.14874","scoring_system":"epss","scoring_elements":"0.94679","published_at":"2026-06-11T12:55:00Z"},{"value":"0.14874","scoring_system":"epss","scoring_elements":"0.94697","published_at":"2026-06-12T12:55:00Z"},{"value":"0.14874","scoring_system":"epss","scoring_elements":"0.94704","published_at":"2026-06-13T12:55:00Z"},{"value":"0.14874","scoring_system":"epss","scoring_elements":"0.94706","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2002-2253"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/56229?format=json","purl":"pkg:deb/debian/libsieve@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsieve@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/56230?format=json","purl":"pkg:deb/debian/libsieve@2.2.6-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsieve@2.2.6-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/56228?format=json","purl":"pkg:deb/debian/libsieve@2.2.6-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsieve@2.2.6-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/56232?format=json","purl":"pkg:deb/debian/libsieve@2.2.6-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsieve@2.2.6-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/56231?format=json","purl":"pkg:deb/debian/libsieve@2.2.6-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsieve@2.2.6-9%3Fdistro=trixie"}],"aliases":["CVE-2002-2253"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3ekw-q4tf-d7ex"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libsieve@2.2.6-6%3Fdistro=trixie"}