{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","type":"deb","namespace":"debian","name":"calibre","version":"9.5.0+ds+~0.10.5-1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"9.6.0+ds+~0.10.5-1","latest_non_vulnerable_version":"9.8.0+ds+~0.10.6-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92219?format=json","vulnerability_id":"VCID-1uhd-3upf-nqbu","summary":"Race condition issues were found in Calibre at devices/linux_mount_helper.c allowing unprivileged users the ability to mount any device to anywhere.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4126","reference_id":"","reference_type":"","scores":[{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65296","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65345","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65371","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65336","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65388","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65399","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65418","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65405","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65378","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65414","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65425","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.6541","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65426","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65437","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65434","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65413","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65457","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65502","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65472","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65493","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00486","scoring_system":"epss","scoring_elements":"0.65549","published_at":"2026-05-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4126","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4126"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584915","reference_id":"584915","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584915"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/583976?format=json","purl":"pkg:deb/debian/calibre@1.5.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@1.5.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2011-4126"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1uhd-3upf-nqbu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42208?format=json","vulnerability_id":"VCID-4gvv-bsf9-vqca","summary":"Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-46303","reference_id":"","reference_type":"","scores":[{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68678","published_at":"2026-05-14T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68623","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68438","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68458","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68434","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68485","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68501","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68527","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68515","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68482","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68523","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68536","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68514","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68563","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68568","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68574","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68552","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68594","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68631","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00567","scoring_system":"epss","scoring_elements":"0.68598","published_at":"2026-05-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-46303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46303"},{"reference_url":"https://security.gentoo.org/glsa/202409-04","reference_id":"GLSA-202409-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-04"},{"reference_url":"https://github.com/0x1717/ssrf-via-img","reference_id":"ssrf-via-img","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-16T13:24:03Z/"}],"url":"https://github.com/0x1717/ssrf-via-img"},{"reference_url":"https://github.com/kovidgoyal/calibre/compare/v6.18.1...v6.19.0","reference_id":"v6.18.1...v6.19.0","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-16T13:24:03Z/"}],"url":"https://github.com/kovidgoyal/calibre/compare/v6.18.1...v6.19.0"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/586262?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/586569?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/586570?format=json","purl":"pkg:deb/debian/calibre@6.19.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.19.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2023-46303"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4gvv-bsf9-vqca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92832?format=json","vulnerability_id":"VCID-4kgm-mmjn-g3a7","summary":"The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-10187","reference_id":"","reference_type":"","scores":[{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60186","published_at":"2026-05-14T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60097","published_at":"2026-05-11T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60123","published_at":"2026-05-12T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.59944","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60022","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60046","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60016","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60066","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.6008","published_at":"2026-05-07T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60101","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60087","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.6007","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60108","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60114","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60071","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60075","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60033","published_at":"2026-05-05T12:55:00Z"},{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60138","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-10187"},{"reference_url":"https://bugs.launchpad.net/calibre/+bug/1651728","reference_id":"","reference_type":"","scores":[],"url":"https://bugs.launchpad.net/calibre/+bug/1651728"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10187"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/kovidgoyal/calibre/commit/3a89718664cb8c","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/kovidgoyal/calibre/commit/3a89718664cb8c"},{"reference_url":"http://www.openwall.com/lists/oss-security/2017/01/29/8","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2017/01/29/8"},{"reference_url":"http://www.openwall.com/lists/oss-security/2017/01/31/9","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2017/01/31/9"},{"reference_url":"http://www.securityfocus.com/bid/95909","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/95909"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853004","reference_id":"853004","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853004"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:calibre-ebook:calibre:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:calibre-ebook:calibre:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:calibre-ebook:calibre:*:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2016-10187","reference_id":"CVE-2016-10187","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:N/A:N"},{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2016-10187"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/582299?format=json","purl":"pkg:deb/debian/calibre@2.75.1%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@2.75.1%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2016-10187"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4kgm-mmjn-g3a7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42211?format=json","vulnerability_id":"VCID-62s7-w8zq-zfg5","summary":"Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6782","reference_id":"","reference_type":"","scores":[{"value":"0.93835","scoring_system":"epss","scoring_elements":"0.99865","published_at":"2026-04-24T12:55:00Z"},{"value":"0.93835","scoring_system":"epss","scoring_elements":"0.99863","published_at":"2026-04-12T12:55:00Z"},{"value":"0.93835","scoring_system":"epss","scoring_elements":"0.99864","published_at":"2026-04-21T12:55:00Z"},{"value":"0.93835","scoring_system":"epss","scoring_elements":"0.99866","published_at":"2026-05-07T12:55:00Z"},{"value":"0.93835","scoring_system":"epss","scoring_elements":"0.99868","published_at":"2026-05-14T12:55:00Z"},{"value":"0.93835","scoring_system":"epss","scoring_elements":"0.99867","published_at":"2026-05-12T12:55:00Z"},{"value":"0.93876","scoring_system":"epss","scoring_elements":"0.99871","published_at":"2026-04-09T12:55:00Z"},{"value":"0.93876","scoring_system":"epss","scoring_elements":"0.99869","published_at":"2026-04-02T12:55:00Z"},{"value":"0.93876","scoring_system":"epss","scoring_elements":"0.9987","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6782"},{"reference_url":"https://starlabs.sg/advisories/24/24-6782/","reference_id":"24-6782","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-08-08T20:04:18Z/"}],"url":"https://starlabs.sg/advisories/24/24-6782/"},{"reference_url":"https://github.com/kovidgoyal/calibre/commit/38a1bf50d8cd22052ae59c513816706c6445d5e9","reference_id":"38a1bf50d8cd22052ae59c513816706c6445d5e9","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-08-08T20:04:18Z/"}],"url":"https://github.com/kovidgoyal/calibre/commit/38a1bf50d8cd22052ae59c513816706c6445d5e9"},{"reference_url":"https://security.gentoo.org/glsa/202409-04","reference_id":"GLSA-202409-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-04"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/585396?format=json","purl":"pkg:deb/debian/calibre@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582190?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582192?format=json","purl":"pkg:deb/debian/calibre@7.16.0%2Bds-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@7.16.0%252Bds-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2024-6782"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-62s7-w8zq-zfg5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/95001?format=json","vulnerability_id":"VCID-favj-1bjh-9uff","summary":"calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service) in html_preprocess_rules in ebooks/conversion/preprocess.py.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44686","reference_id":"","reference_type":"","scores":[{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61347","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61424","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61452","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61423","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.6147","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61485","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61506","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61493","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61473","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61512","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61517","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.615","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61487","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61503","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61497","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61449","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61558","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61519","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61547","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00412","scoring_system":"epss","scoring_elements":"0.61599","published_at":"2026-05-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-44686"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44686","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44686"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/586262?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/586263?format=json","purl":"pkg:deb/debian/calibre@5.33.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.33.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2021-44686"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-favj-1bjh-9uff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64271?format=json","vulnerability_id":"VCID-mqmp-g7uy-gbg4","summary":"calibre: Calibre: Arbitrary file write via crafted RocketBook (.rb) file","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-30853.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-30853.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-30853","reference_id":"","reference_type":"","scores":[{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.0217","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02151","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02176","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02171","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02172","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02154","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02194","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02672","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02664","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05207","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07515","published_at":"2026-05-14T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07462","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07478","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07263","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07271","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07243","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07254","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07408","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07479","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-30853"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-30853","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-30853"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447437","reference_id":"2447437","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2447437"},{"reference_url":"https://github.com/kovidgoyal/calibre/security/advisories/GHSA-7mp7-rfrg-542x","reference_id":"GHSA-7mp7-rfrg-542x","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-13T19:42:19Z/"}],"url":"https://github.com/kovidgoyal/calibre/security/advisories/GHSA-7mp7-rfrg-542x"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2026-30853"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mqmp-g7uy-gbg4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42213?format=json","vulnerability_id":"VCID-pa4n-csyj-wqet","summary":"Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7009","reference_id":"","reference_type":"","scores":[{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92408","published_at":"2026-05-14T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92368","published_at":"2026-05-07T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92377","published_at":"2026-05-09T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92381","published_at":"2026-05-11T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92388","published_at":"2026-05-12T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.9231","published_at":"2026-04-02T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92315","published_at":"2026-04-04T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92318","published_at":"2026-04-07T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92329","published_at":"2026-04-08T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92334","published_at":"2026-04-09T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92339","published_at":"2026-04-11T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92341","published_at":"2026-04-12T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92338","published_at":"2026-04-13T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.9235","published_at":"2026-04-16T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92349","published_at":"2026-04-21T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92353","published_at":"2026-04-24T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92354","published_at":"2026-04-26T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92348","published_at":"2026-04-29T12:55:00Z"},{"value":"0.08423","scoring_system":"epss","scoring_elements":"0.92358","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7009"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7009","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7009"},{"reference_url":"https://starlabs.sg/advisories/24/24-7009/","reference_id":"24-7009","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-06T13:15:35Z/"}],"url":"https://starlabs.sg/advisories/24/24-7009/"},{"reference_url":"https://github.com/kovidgoyal/calibre/commit/d56574285e8859d3d715eb7829784ee74337b7d7","reference_id":"d56574285e8859d3d715eb7829784ee74337b7d7","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-06T13:15:35Z/"}],"url":"https://github.com/kovidgoyal/calibre/commit/d56574285e8859d3d715eb7829784ee74337b7d7"},{"reference_url":"https://security.gentoo.org/glsa/202409-04","reference_id":"GLSA-202409-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-04"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582190?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582192?format=json","purl":"pkg:deb/debian/calibre@7.16.0%2Bds-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@7.16.0%252Bds-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2024-7009"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pa4n-csyj-wqet"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92217?format=json","vulnerability_id":"VCID-qsbr-up7k-kbcr","summary":"Input validation issues were found in Calibre at devices/linux_mount_helper.c which can lead to argument injection and elevation of privileges.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4124","reference_id":"","reference_type":"","scores":[{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70153","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70165","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70182","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.7016","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70207","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70221","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70245","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.7023","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70217","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70259","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70268","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70247","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70299","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70307","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70305","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.7028","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70322","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70354","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70321","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70348","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00627","scoring_system":"epss","scoring_elements":"0.70398","published_at":"2026-05-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4124"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4124","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4124"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584915","reference_id":"584915","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584915"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/583976?format=json","purl":"pkg:deb/debian/calibre@1.5.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@1.5.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2011-4124"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qsbr-up7k-kbcr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42209?format=json","vulnerability_id":"VCID-rrh8-rvrz-mkdz","summary":"Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6781","reference_id":"","reference_type":"","scores":[{"value":"0.93721","scoring_system":"epss","scoring_elements":"0.99855","published_at":"2026-05-14T12:55:00Z"},{"value":"0.93721","scoring_system":"epss","scoring_elements":"0.9985","published_at":"2026-04-21T12:55:00Z"},{"value":"0.93721","scoring_system":"epss","scoring_elements":"0.99851","published_at":"2026-04-18T12:55:00Z"},{"value":"0.93721","scoring_system":"epss","scoring_elements":"0.99852","published_at":"2026-04-24T12:55:00Z"},{"value":"0.93721","scoring_system":"epss","scoring_elements":"0.99853","published_at":"2026-05-11T12:55:00Z"},{"value":"0.93721","scoring_system":"epss","scoring_elements":"0.99854","published_at":"2026-05-12T12:55:00Z"},{"value":"0.93767","scoring_system":"epss","scoring_elements":"0.99854","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6781"},{"reference_url":"https://starlabs.sg/advisories/24/24-6781/","reference_id":"24-6781","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T14:44:09Z/"}],"url":"https://starlabs.sg/advisories/24/24-6781/"},{"reference_url":"https://github.com/kovidgoyal/calibre/commit/bcd0ab12c41a887f8290a9b56e46c3a29038d9c4","reference_id":"bcd0ab12c41a887f8290a9b56e46c3a29038d9c4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T14:44:09Z/"}],"url":"https://github.com/kovidgoyal/calibre/commit/bcd0ab12c41a887f8290a9b56e46c3a29038d9c4"},{"reference_url":"https://security.gentoo.org/glsa/202409-04","reference_id":"GLSA-202409-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-04"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/585396?format=json","purl":"pkg:deb/debian/calibre@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582192?format=json","purl":"pkg:deb/debian/calibre@7.16.0%2Bds-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@7.16.0%252Bds-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2024-6781"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rrh8-rvrz-mkdz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92218?format=json","vulnerability_id":"VCID-stnm-9pm7-gqbv","summary":"A untrusted search path issue was found in Calibre at devices/linux_mount_helper.c leading to the ability of unprivileged users to execute any program as root.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4125","reference_id":"","reference_type":"","scores":[{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72756","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72764","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72784","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.7276","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72798","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72812","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72836","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72819","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72811","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72852","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72863","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72855","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72896","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72906","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72905","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72899","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72925","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72951","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72913","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.72938","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00736","scoring_system":"epss","scoring_elements":"0.7299","published_at":"2026-05-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4125"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4125","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4125"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584915","reference_id":"584915","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584915"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/583976?format=json","purl":"pkg:deb/debian/calibre@1.5.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@1.5.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2011-4125"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-stnm-9pm7-gqbv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/93806?format=json","vulnerability_id":"VCID-xhf1-k7jg-6ued","summary":"gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7889","reference_id":"","reference_type":"","scores":[{"value":"0.09411","scoring_system":"epss","scoring_elements":"0.92881","published_at":"2026-05-14T12:55:00Z"},{"value":"0.09411","scoring_system":"epss","scoring_elements":"0.92834","published_at":"2026-05-07T12:55:00Z"},{"value":"0.09411","scoring_system":"epss","scoring_elements":"0.92846","published_at":"2026-05-09T12:55:00Z"},{"value":"0.09411","scoring_system":"epss","scoring_elements":"0.9285","published_at":"2026-05-11T12:55:00Z"},{"value":"0.09411","scoring_system":"epss","scoring_elements":"0.92856","published_at":"2026-05-12T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93386","published_at":"2026-04-13T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93385","published_at":"2026-04-12T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93405","published_at":"2026-04-16T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93354","published_at":"2026-04-01T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93416","published_at":"2026-04-29T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.9342","published_at":"2026-04-24T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93417","published_at":"2026-04-26T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93422","published_at":"2026-05-05T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93409","published_at":"2026-04-18T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93362","published_at":"2026-04-02T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.9337","published_at":"2026-04-07T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93377","published_at":"2026-04-08T12:55:00Z"},{"value":"0.10883","scoring_system":"epss","scoring_elements":"0.93381","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7889"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7889","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7889"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892242","reference_id":"892242","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892242"},{"reference_url":"https://security.archlinux.org/ASA-201803-8","reference_id":"ASA-201803-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201803-8"},{"reference_url":"https://security.archlinux.org/AVG-650","reference_id":"AVG-650","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-650"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/585320?format=json","purl":"pkg:deb/debian/calibre@3.19.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@3.19.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2018-7889"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xhf1-k7jg-6ued"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42212?format=json","vulnerability_id":"VCID-ycp8-ws8x-3qbn","summary":"Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7008","reference_id":"","reference_type":"","scores":[{"value":"0.12708","scoring_system":"epss","scoring_elements":"0.93973","published_at":"2026-04-04T12:55:00Z"},{"value":"0.12708","scoring_system":"epss","scoring_elements":"0.93988","published_at":"2026-04-09T12:55:00Z"},{"value":"0.12708","scoring_system":"epss","scoring_elements":"0.93984","published_at":"2026-04-08T12:55:00Z"},{"value":"0.12708","scoring_system":"epss","scoring_elements":"0.93976","published_at":"2026-04-07T12:55:00Z"},{"value":"0.12708","scoring_system":"epss","scoring_elements":"0.93964","published_at":"2026-04-02T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.94267","published_at":"2026-05-14T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.9423","published_at":"2026-05-07T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.94242","published_at":"2026-05-09T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.94247","published_at":"2026-05-11T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.94254","published_at":"2026-05-12T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.94191","published_at":"2026-04-13T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.94207","published_at":"2026-04-16T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.94212","published_at":"2026-04-21T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.94215","published_at":"2026-04-29T12:55:00Z"},{"value":"0.13396","scoring_system":"epss","scoring_elements":"0.94219","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7008"},{"reference_url":"https://starlabs.sg/advisories/24/24-7008/","reference_id":"24-7008","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T15:34:54Z/"}],"url":"https://starlabs.sg/advisories/24/24-7008/"},{"reference_url":"https://github.com/kovidgoyal/calibre/commit/863abac24e7bc3e5ca0b3307362ff1953ba53fe0","reference_id":"863abac24e7bc3e5ca0b3307362ff1953ba53fe0","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T15:34:54Z/"}],"url":"https://github.com/kovidgoyal/calibre/commit/863abac24e7bc3e5ca0b3307362ff1953ba53fe0"},{"reference_url":"https://security.gentoo.org/glsa/202409-04","reference_id":"GLSA-202409-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-04"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582190?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582192?format=json","purl":"pkg:deb/debian/calibre@7.16.0%2Bds-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@7.16.0%252Bds-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2024-7008"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ycp8-ws8x-3qbn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53354?format=json","vulnerability_id":"VCID-z6j2-32tf-g7ax","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1028.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1028.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-1028","reference_id":"","reference_type":"","scores":[{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93088","published_at":"2026-05-14T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.92976","published_at":"2026-04-01T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.92984","published_at":"2026-04-02T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.92988","published_at":"2026-04-04T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.92987","published_at":"2026-04-07T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.92996","published_at":"2026-04-08T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93","published_at":"2026-04-09T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93005","published_at":"2026-04-11T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93003","published_at":"2026-04-12T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93004","published_at":"2026-04-13T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93014","published_at":"2026-04-16T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93017","published_at":"2026-04-18T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93024","published_at":"2026-04-21T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93029","published_at":"2026-05-05T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93025","published_at":"2026-04-29T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93045","published_at":"2026-05-07T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93056","published_at":"2026-05-09T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93059","published_at":"2026-05-11T12:55:00Z"},{"value":"0.09896","scoring_system":"epss","scoring_elements":"0.93066","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-1028"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=566596","reference_id":"566596","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=566596"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=787085","reference_id":"787085","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=787085"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1028","reference_id":"CVE-2010-1028","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1028"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2010-08","reference_id":"mfsa2010-08","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2010-08"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/586431?format=json","purl":"pkg:deb/debian/calibre@2.38.0%2Bdfsg-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@2.38.0%252Bdfsg-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582189?format=json","purl":"pkg:deb/debian/calibre@5.12.0%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-b3vv-xdp2-7ub8"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@5.12.0%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582191?format=json","purl":"pkg:deb/debian/calibre@6.13.0%2Brepack-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@6.13.0%252Brepack-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582193?format=json","purl":"pkg:deb/debian/calibre@8.5.0%2Bds-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2w1b-b6qm-4qhf"},{"vulnerability":"VCID-bjj5-ynf7-v7aa"},{"vulnerability":"VCID-dywq-dzuv-wka2"},{"vulnerability":"VCID-hgmk-8s7s-tfdb"},{"vulnerability":"VCID-jwpx-aqjh-dqej"},{"vulnerability":"VCID-mqmp-g7uy-gbg4"},{"vulnerability":"VCID-nj3z-4ya4-bqf7"},{"vulnerability":"VCID-vq4p-dvg4-eudz"},{"vulnerability":"VCID-x63d-4kux-cqcu"},{"vulnerability":"VCID-zhz3-1799-a7hk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@8.5.0%252Bds-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582194?format=json","purl":"pkg:deb/debian/calibre@9.5.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582195?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1041946?format=json","purl":"pkg:deb/debian/calibre@9.6.0%2Bds%2B~0.10.5-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.6.0%252Bds%252B~0.10.5-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1062443?format=json","purl":"pkg:deb/debian/calibre@9.7.0%2Bds%2B~0.10.5-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.7.0%252Bds%252B~0.10.5-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1102898?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1112497?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.5-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.5-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1113658?format=json","purl":"pkg:deb/debian/calibre@9.8.0%2Bds%2B~0.10.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.8.0%252Bds%252B~0.10.6-1%3Fdistro=trixie"}],"aliases":["CVE-2010-1028"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z6j2-32tf-g7ax"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/calibre@9.5.0%252Bds%252B~0.10.5-1%3Fdistro=trixie"}