{"url":"http://public2.vulnerablecode.io/api/packages/96239?format=json","purl":"pkg:deb/debian/gettext@0.23.1-2?distro=trixie","type":"deb","namespace":"debian","name":"gettext","version":"0.23.1-2","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"0.26-1","latest_non_vulnerable_version":"0.26-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69927?format=json","vulnerability_id":"VCID-18mj-wn93-pbg3","summary":"The (1) autopoint and (2) gettextize scripts in the GNU gettext package 1.14 and later versions, as used in Trustix Secure Linux 1.5 through 2.1 and other operating systems, allows local users to overwrite files via a symlink attack on temporary files.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0966","reference_id":"","reference_type":"","scores":[{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22705","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22787","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22772","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22725","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22675","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22678","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0966"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0966","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0966"},{"reference_url":"https://security.gentoo.org/glsa/200410-10","reference_id":"GLSA-200410-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200410-10"},{"reference_url":"https://usn.ubuntu.com/5-1/","reference_id":"USN-5-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/96236?format=json","purl":"pkg:deb/debian/gettext@0.14.1-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.14.1-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/96237?format=json","purl":"pkg:deb/debian/gettext@0.21-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.21-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/96235?format=json","purl":"pkg:deb/debian/gettext@0.21-12?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.21-12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/96239?format=json","purl":"pkg:deb/debian/gettext@0.23.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.23.1-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/96238?format=json","purl":"pkg:deb/debian/gettext@0.26-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.26-1%3Fdistro=trixie"}],"aliases":["CVE-2004-0966"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-18mj-wn93-pbg3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6147?format=json","vulnerability_id":"VCID-yf34-x8k6-k7ax","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18751.json","reference_id":"","reference_type":"","scores":[{"value":"4.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18751.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-18751","reference_id":"","reference_type":"","scores":[{"value":"0.00555","scoring_system":"epss","scoring_elements":"0.68479","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00555","scoring_system":"epss","scoring_elements":"0.68524","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00555","scoring_system":"epss","scoring_elements":"0.68521","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00555","scoring_system":"epss","scoring_elements":"0.68505","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00555","scoring_system":"epss","scoring_elements":"0.6852","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00555","scoring_system":"epss","scoring_elements":"0.68527","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-18751"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18751","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18751"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1647043","reference_id":"1647043","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1647043"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913173","reference_id":"913173","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913173"},{"reference_url":"https://security.archlinux.org/ASA-201908-14","reference_id":"ASA-201908-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201908-14"},{"reference_url":"https://security.archlinux.org/AVG-885","reference_id":"AVG-885","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-885"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3643","reference_id":"RHSA-2019:3643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3643"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:1138","reference_id":"RHSA-2020:1138","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:1138"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2485","reference_id":"RHSA-2020:2485","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2485"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2846","reference_id":"RHSA-2020:2846","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2846"},{"reference_url":"https://usn.ubuntu.com/3815-1/","reference_id":"USN-3815-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3815-1/"},{"reference_url":"https://usn.ubuntu.com/3815-2/","reference_id":"USN-3815-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3815-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/96241?format=json","purl":"pkg:deb/debian/gettext@0.19.8.1-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.19.8.1-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/96237?format=json","purl":"pkg:deb/debian/gettext@0.21-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.21-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/96235?format=json","purl":"pkg:deb/debian/gettext@0.21-12?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.21-12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/96239?format=json","purl":"pkg:deb/debian/gettext@0.23.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.23.1-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/96238?format=json","purl":"pkg:deb/debian/gettext@0.26-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.26-1%3Fdistro=trixie"}],"aliases":["CVE-2018-18751"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yf34-x8k6-k7ax"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gettext@0.23.1-2%3Fdistro=trixie"}