{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/135245?format=json","vulnerability_id":"VCID-7ftr-5ebq-fkd7","summary":"Untrusted search path vulnerability in modules/engines/ms-windows/xp_theme.c in GTK+ before 2.24.0 allows local users to gain privileges via a Trojan horse uxtheme.dll file in the current working directory, a different vulnerability than CVE-2010-4831.","aliases":[{"alias":"CVE-2010-4833"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/924620?format=json","purl":"pkg:deb/debian/gtk%2B2.0@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/924614?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-2%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-2%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/924612?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-2%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-2%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/924616?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/924615?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-10%3Fdistro=trixie"}],"affected_packages":[],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4833","reference_id":"","reference_type":"","scores":[{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66611","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66651","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66677","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.667","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66715","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66735","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66722","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66692","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66726","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66739","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66724","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66748","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66761","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66759","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66729","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66774","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66814","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66788","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66808","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66872","published_at":"2026-05-14T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66883","published_at":"2026-05-15T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66894","published_at":"2026-05-16T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4833"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7ftr-5ebq-fkd7"}