{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/180248?format=json","vulnerability_id":"VCID-scyd-dy1s-affz","summary":"Two vulnerabilities in libexif possibly allow for the execution of\n    arbitrary code or a Denial of Service.","aliases":[{"alias":"CVE-2007-6352"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52728?format=json","purl":"pkg:deb/debian/libexif@0.6.16-2.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.16-2.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1077374?format=json","purl":"pkg:deb/debian/libexif@0.6.16-2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1hb9-af22-uuat"},{"vulnerability":"VCID-2pkw-xkdc-73ct"},{"vulnerability":"VCID-2t4q-6fxq-hybm"},{"vulnerability":"VCID-2ugg-p2tg-p3ez"},{"vulnerability":"VCID-3q3m-95pg-tqgw"},{"vulnerability":"VCID-4kmd-m1v5-qfed"},{"vulnerability":"VCID-4xkp-h8u4-1uez"},{"vulnerability":"VCID-75ec-c27a-1ybj"},{"vulnerability":"VCID-8mwj-c8gf-83en"},{"vulnerability":"VCID-9vy2-t1y1-j3c1"},{"vulnerability":"VCID-ajtr-5n9b-vba1"},{"vulnerability":"VCID-dwyc-ktkc-8uf8"},{"vulnerability":"VCID-fkxf-pzuc-4yda"},{"vulnerability":"VCID-gup7-2q2p-qbfz"},{"vulnerability":"VCID-jbzm-1tyx-zba6"},{"vulnerability":"VCID-p5w5-bzkv-mqat"},{"vulnerability":"VCID-qfqd-rhjw-77bp"},{"vulnerability":"VCID-r5ej-cfmw-g7g1"},{"vulnerability":"VCID-rwgm-tfat-y3ha"},{"vulnerability":"VCID-ufp6-9uwk-zbad"},{"vulnerability":"VCID-uzr9-d4t2-hfc5"},{"vulnerability":"VCID-xyh7-gdsd-yucv"},{"vulnerability":"VCID-y394-94cd-n3cc"},{"vulnerability":"VCID-ycgt-zsvt-x3dq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.16-2.1"},{"url":"http://public2.vulnerablecode.io/api/packages/52722?format=json","purl":"pkg:deb/debian/libexif@0.6.22-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.22-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52720?format=json","purl":"pkg:deb/debian/libexif@0.6.24-1%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.24-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52724?format=json","purl":"pkg:deb/debian/libexif@0.6.25-1%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.25-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/52723?format=json","purl":"pkg:deb/debian/libexif@0.6.26-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.26-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/4673?format=json","purl":"pkg:ebuild/media-libs/libexif@0.6.16-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libexif@0.6.16-r1"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1077370?format=json","purl":"pkg:deb/debian/libexif@0.5.0-1woody1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1hb9-af22-uuat"},{"vulnerability":"VCID-2pkw-xkdc-73ct"},{"vulnerability":"VCID-2t4q-6fxq-hybm"},{"vulnerability":"VCID-2ugg-p2tg-p3ez"},{"vulnerability":"VCID-2ypd-xs6f-kubs"},{"vulnerability":"VCID-3q3m-95pg-tqgw"},{"vulnerability":"VCID-4kmd-m1v5-qfed"},{"vulnerability":"VCID-4xkp-h8u4-1uez"},{"vulnerability":"VCID-75ec-c27a-1ybj"},{"vulnerability":"VCID-8mwj-c8gf-83en"},{"vulnerability":"VCID-9vy2-t1y1-j3c1"},{"vulnerability":"VCID-ajtr-5n9b-vba1"},{"vulnerability":"VCID-bgkn-ux4h-f3gr"},{"vulnerability":"VCID-cbyn-4bcj-mqc3"},{"vulnerability":"VCID-dwyc-ktkc-8uf8"},{"vulnerability":"VCID-fkxf-pzuc-4yda"},{"vulnerability":"VCID-gup7-2q2p-qbfz"},{"vulnerability":"VCID-jbzm-1tyx-zba6"},{"vulnerability":"VCID-p2xq-8p1s-mqhh"},{"vulnerability":"VCID-p5w5-bzkv-mqat"},{"vulnerability":"VCID-qfqd-rhjw-77bp"},{"vulnerability":"VCID-r5ej-cfmw-g7g1"},{"vulnerability":"VCID-rwgm-tfat-y3ha"},{"vulnerability":"VCID-scyd-dy1s-affz"},{"vulnerability":"VCID-ufp6-9uwk-zbad"},{"vulnerability":"VCID-uzr9-d4t2-hfc5"},{"vulnerability":"VCID-xyh7-gdsd-yucv"},{"vulnerability":"VCID-y394-94cd-n3cc"},{"vulnerability":"VCID-ycgt-zsvt-x3dq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.5.0-1woody1"},{"url":"http://public2.vulnerablecode.io/api/packages/1077371?format=json","purl":"pkg:deb/debian/libexif@0.6.9-6sarge2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1hb9-af22-uuat"},{"vulnerability":"VCID-2pkw-xkdc-73ct"},{"vulnerability":"VCID-2t4q-6fxq-hybm"},{"vulnerability":"VCID-2ugg-p2tg-p3ez"},{"vulnerability":"VCID-3q3m-95pg-tqgw"},{"vulnerability":"VCID-4kmd-m1v5-qfed"},{"vulnerability":"VCID-4xkp-h8u4-1uez"},{"vulnerability":"VCID-75ec-c27a-1ybj"},{"vulnerability":"VCID-8mwj-c8gf-83en"},{"vulnerability":"VCID-9vy2-t1y1-j3c1"},{"vulnerability":"VCID-ajtr-5n9b-vba1"},{"vulnerability":"VCID-bgkn-ux4h-f3gr"},{"vulnerability":"VCID-cbyn-4bcj-mqc3"},{"vulnerability":"VCID-dwyc-ktkc-8uf8"},{"vulnerability":"VCID-fkxf-pzuc-4yda"},{"vulnerability":"VCID-gup7-2q2p-qbfz"},{"vulnerability":"VCID-jbzm-1tyx-zba6"},{"vulnerability":"VCID-p2xq-8p1s-mqhh"},{"vulnerability":"VCID-p5w5-bzkv-mqat"},{"vulnerability":"VCID-qfqd-rhjw-77bp"},{"vulnerability":"VCID-r5ej-cfmw-g7g1"},{"vulnerability":"VCID-rwgm-tfat-y3ha"},{"vulnerability":"VCID-scyd-dy1s-affz"},{"vulnerability":"VCID-ufp6-9uwk-zbad"},{"vulnerability":"VCID-uzr9-d4t2-hfc5"},{"vulnerability":"VCID-xyh7-gdsd-yucv"},{"vulnerability":"VCID-y394-94cd-n3cc"},{"vulnerability":"VCID-ycgt-zsvt-x3dq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.9-6sarge2"},{"url":"http://public2.vulnerablecode.io/api/packages/1077372?format=json","purl":"pkg:deb/debian/libexif@0.6.13-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1hb9-af22-uuat"},{"vulnerability":"VCID-2pkw-xkdc-73ct"},{"vulnerability":"VCID-2t4q-6fxq-hybm"},{"vulnerability":"VCID-2ugg-p2tg-p3ez"},{"vulnerability":"VCID-3q3m-95pg-tqgw"},{"vulnerability":"VCID-4kmd-m1v5-qfed"},{"vulnerability":"VCID-4xkp-h8u4-1uez"},{"vulnerability":"VCID-75ec-c27a-1ybj"},{"vulnerability":"VCID-8mwj-c8gf-83en"},{"vulnerability":"VCID-9vy2-t1y1-j3c1"},{"vulnerability":"VCID-ajtr-5n9b-vba1"},{"vulnerability":"VCID-bgkn-ux4h-f3gr"},{"vulnerability":"VCID-cbyn-4bcj-mqc3"},{"vulnerability":"VCID-dwyc-ktkc-8uf8"},{"vulnerability":"VCID-fkxf-pzuc-4yda"},{"vulnerability":"VCID-gup7-2q2p-qbfz"},{"vulnerability":"VCID-jbzm-1tyx-zba6"},{"vulnerability":"VCID-p2xq-8p1s-mqhh"},{"vulnerability":"VCID-p5w5-bzkv-mqat"},{"vulnerability":"VCID-qfqd-rhjw-77bp"},{"vulnerability":"VCID-r5ej-cfmw-g7g1"},{"vulnerability":"VCID-rwgm-tfat-y3ha"},{"vulnerability":"VCID-scyd-dy1s-affz"},{"vulnerability":"VCID-ufp6-9uwk-zbad"},{"vulnerability":"VCID-uzr9-d4t2-hfc5"},{"vulnerability":"VCID-xyh7-gdsd-yucv"},{"vulnerability":"VCID-y394-94cd-n3cc"},{"vulnerability":"VCID-ycgt-zsvt-x3dq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.13-5"},{"url":"http://public2.vulnerablecode.io/api/packages/1077373?format=json","purl":"pkg:deb/debian/libexif@0.6.13-5etch2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1hb9-af22-uuat"},{"vulnerability":"VCID-2pkw-xkdc-73ct"},{"vulnerability":"VCID-2t4q-6fxq-hybm"},{"vulnerability":"VCID-2ugg-p2tg-p3ez"},{"vulnerability":"VCID-3q3m-95pg-tqgw"},{"vulnerability":"VCID-4kmd-m1v5-qfed"},{"vulnerability":"VCID-4xkp-h8u4-1uez"},{"vulnerability":"VCID-75ec-c27a-1ybj"},{"vulnerability":"VCID-8mwj-c8gf-83en"},{"vulnerability":"VCID-9vy2-t1y1-j3c1"},{"vulnerability":"VCID-ajtr-5n9b-vba1"},{"vulnerability":"VCID-bgkn-ux4h-f3gr"},{"vulnerability":"VCID-cbyn-4bcj-mqc3"},{"vulnerability":"VCID-dwyc-ktkc-8uf8"},{"vulnerability":"VCID-fkxf-pzuc-4yda"},{"vulnerability":"VCID-gup7-2q2p-qbfz"},{"vulnerability":"VCID-jbzm-1tyx-zba6"},{"vulnerability":"VCID-p2xq-8p1s-mqhh"},{"vulnerability":"VCID-p5w5-bzkv-mqat"},{"vulnerability":"VCID-qfqd-rhjw-77bp"},{"vulnerability":"VCID-r5ej-cfmw-g7g1"},{"vulnerability":"VCID-rwgm-tfat-y3ha"},{"vulnerability":"VCID-scyd-dy1s-affz"},{"vulnerability":"VCID-ufp6-9uwk-zbad"},{"vulnerability":"VCID-uzr9-d4t2-hfc5"},{"vulnerability":"VCID-xyh7-gdsd-yucv"},{"vulnerability":"VCID-y394-94cd-n3cc"},{"vulnerability":"VCID-ycgt-zsvt-x3dq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libexif@0.6.13-5etch2"},{"url":"http://public2.vulnerablecode.io/api/packages/370306?format=json","purl":"pkg:rpm/redhat/libexif@0.5.12-5.1.0.2.el4_6?arch=1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-scyd-dy1s-affz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libexif@0.5.12-5.1.0.2.el4_6%3Farch=1"},{"url":"http://public2.vulnerablecode.io/api/packages/370305?format=json","purl":"pkg:rpm/redhat/libexif@0.6.13-4.0.2.el5_1?arch=1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-p2xq-8p1s-mqhh"},{"vulnerability":"VCID-scyd-dy1s-affz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libexif@0.6.13-4.0.2.el5_1%3Farch=1"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6352.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6352.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6352","reference_id":"","reference_type":"","scores":[{"value":"0.03354","scoring_system":"epss","scoring_elements":"0.87601","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03354","scoring_system":"epss","scoring_elements":"0.87644","published_at":"2026-06-12T12:55:00Z"},{"value":"0.03354","scoring_system":"epss","scoring_elements":"0.8765","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6352"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6352","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6352"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=425561","reference_id":"425561","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=425561"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457330","reference_id":"457330","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457330"},{"reference_url":"https://security.gentoo.org/glsa/200712-15","reference_id":"GLSA-200712-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200712-15"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1165","reference_id":"RHSA-2007:1165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1166","reference_id":"RHSA-2007:1166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1166"},{"reference_url":"https://usn.ubuntu.com/654-1/","reference_id":"USN-654-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/654-1/"}],"weaknesses":[{"cwe_id":190,"name":"Integer Overflow or Wraparound","description":"The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control."}],"exploits":[],"severity_range_score":null,"exploitability":"0.5","weighted_severity":"0.0","risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-scyd-dy1s-affz"}