Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/gimp@3.0.0-1?distro=trixie
Typedeb
Namespacedebian
Namegimp
Version3.0.0-1
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version3.0.2-3.1
Latest_non_vulnerable_version3.2.4-2
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-gb4e-ny85-uqdv
vulnerability_id VCID-gb4e-ny85-uqdv
summary GIMP FLI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of FLI files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25100.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-2761
reference_id
reference_type
scores
0
value 0.00558
scoring_system epss
scoring_elements 0.68628
published_at 2026-06-07T12:55:00Z
1
value 0.00558
scoring_system epss
scoring_elements 0.68636
published_at 2026-06-06T12:55:00Z
2
value 0.00558
scoring_system epss
scoring_elements 0.68613
published_at 2026-06-08T12:55:00Z
3
value 0.00558
scoring_system epss
scoring_elements 0.68631
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-2761
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2761
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2761
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://usn.ubuntu.com/8057-1/
reference_id USN-8057-1
reference_type
scores
url https://usn.ubuntu.com/8057-1/
4
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-204/
reference_id ZDI-25-204
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T18:21:41Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-204/
fixed_packages
0
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4t6y-xyhd-cyau
1
vulnerability VCID-bhng-9wue-tfew
2
vulnerability VCID-daex-4p6v-kkfa
3
vulnerability VCID-v61r-63c3-z3bu
4
vulnerability VCID-vc97-wac9-1fc7
5
vulnerability VCID-wb9g-gzb7-u3dw
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u3%3Fdistro=trixie
3
url pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u10?distro=trixie
purl pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u10?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4t6y-xyhd-cyau
1
vulnerability VCID-bhng-9wue-tfew
2
vulnerability VCID-daex-4p6v-kkfa
3
vulnerability VCID-v61r-63c3-z3bu
4
vulnerability VCID-vc97-wac9-1fc7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u10%3Fdistro=trixie
4
url pkg:deb/debian/gimp@3.0.0-1?distro=trixie
purl pkg:deb/debian/gimp@3.0.0-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.0-1%3Fdistro=trixie
5
url pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u8?distro=trixie
purl pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u8?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4t6y-xyhd-cyau
1
vulnerability VCID-bhng-9wue-tfew
2
vulnerability VCID-v61r-63c3-z3bu
3
vulnerability VCID-vc97-wac9-1fc7
4
vulnerability VCID-vrzz-ktuz-uycr
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u8%3Fdistro=trixie
6
url pkg:deb/debian/gimp@3.2.4-2?distro=trixie
purl pkg:deb/debian/gimp@3.2.4-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-2%3Fdistro=trixie
aliases CVE-2025-2761
risk_score 2.4
exploitability 0.5
weighted_severity 4.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gb4e-ny85-uqdv
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.0-1%3Fdistro=trixie