Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/35805?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35805?format=api", "vulnerability_id": "VCID-abzn-gut6-y3cz", "summary": "Multiple vulnerabilities have been found in LibRaw, the worst of\n which may allow attackers to execute arbitrary code.", "aliases": [ { "alias": "CVE-2020-24889" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/928380?format=api", "purl": "pkg:deb/debian/libraw@0.20.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.20.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1049100?format=api", "purl": "pkg:deb/debian/libraw@0.20.2-1%2Bdeb11u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-16gd-uc62-9ufj" }, { "vulnerability": "VCID-33xw-gu7q-3uht" }, { "vulnerability": "VCID-6xx8-17hs-dycx" }, { "vulnerability": "VCID-7fkh-bs2q-3kh9" }, { "vulnerability": "VCID-88vk-c7wu-fffr" }, { "vulnerability": "VCID-fbf4-mwnn-vqdp" }, { "vulnerability": "VCID-fcxc-babh-jkdy" }, { "vulnerability": "VCID-j71m-zp3s-jfhr" }, { "vulnerability": "VCID-y455-nxwt-7ygd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.20.2-1%252Bdeb11u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/928362?format=api", "purl": "pkg:deb/debian/libraw@0.20.2-1%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-16gd-uc62-9ufj" }, { "vulnerability": "VCID-6xx8-17hs-dycx" }, { "vulnerability": "VCID-7fkh-bs2q-3kh9" }, { "vulnerability": "VCID-fcxc-babh-jkdy" }, { "vulnerability": "VCID-fhgt-mdjx-3bap" }, { "vulnerability": "VCID-j71m-zp3s-jfhr" }, { "vulnerability": "VCID-jv1c-typs-bfed" }, { "vulnerability": "VCID-sqs3-hagf-xfg9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.20.2-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/928360?format=api", "purl": "pkg:deb/debian/libraw@0.20.2-2.1%2Bdeb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-16gd-uc62-9ufj" }, { "vulnerability": "VCID-6xx8-17hs-dycx" }, { "vulnerability": "VCID-7fkh-bs2q-3kh9" }, { "vulnerability": "VCID-fcxc-babh-jkdy" }, { "vulnerability": "VCID-fhgt-mdjx-3bap" }, { "vulnerability": "VCID-j71m-zp3s-jfhr" }, { "vulnerability": "VCID-jv1c-typs-bfed" }, { "vulnerability": "VCID-sqs3-hagf-xfg9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.20.2-2.1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/928364?format=api", "purl": "pkg:deb/debian/libraw@0.21.4-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-16gd-uc62-9ufj" }, { "vulnerability": "VCID-6xx8-17hs-dycx" }, { "vulnerability": "VCID-7fkh-bs2q-3kh9" }, { "vulnerability": "VCID-fcxc-babh-jkdy" }, { "vulnerability": "VCID-fhgt-mdjx-3bap" }, { "vulnerability": "VCID-j71m-zp3s-jfhr" }, { "vulnerability": "VCID-jv1c-typs-bfed" }, { "vulnerability": "VCID-sqs3-hagf-xfg9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.21.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/928363?format=api", "purl": "pkg:deb/debian/libraw@0.21.5b-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.21.5b-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1112548?format=api", "purl": "pkg:deb/debian/libraw@0.22.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.22.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/74219?format=api", "purl": "pkg:ebuild/media-libs/libraw@0.20.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libraw@0.20.0" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036495?format=api", "purl": "pkg:deb/debian/libraw@0.9.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1p46-52y8-kbgb" }, { "vulnerability": "VCID-25js-gs2n-jbfb" }, { "vulnerability": "VCID-33xw-gu7q-3uht" }, { "vulnerability": "VCID-34d5-3aug-ffgw" }, { "vulnerability": "VCID-43af-u5hy-afcg" }, { "vulnerability": "VCID-4ksq-fpwc-t3fq" }, { "vulnerability": "VCID-54h1-vj6r-4ue5" }, { "vulnerability": "VCID-57aw-3kt4-5fd8" }, { "vulnerability": "VCID-5qx5-u16v-vfgz" }, { "vulnerability": "VCID-6r3y-tdry-guc3" }, { "vulnerability": "VCID-88vk-c7wu-fffr" }, { "vulnerability": "VCID-8g8a-1egc-pbhs" }, { "vulnerability": "VCID-8nfh-uny2-2yay" }, { "vulnerability": "VCID-aa14-ypvj-pfen" }, { "vulnerability": "VCID-aakc-8r79-7bbs" }, { "vulnerability": "VCID-abzn-gut6-y3cz" }, { "vulnerability": "VCID-affs-bchw-93bx" }, { "vulnerability": "VCID-b7yv-7e6a-nfhy" }, { "vulnerability": "VCID-c7f1-d627-z3dm" }, { "vulnerability": "VCID-car8-7w1p-2uhx" }, { "vulnerability": "VCID-cm22-ayty-xqes" }, { "vulnerability": "VCID-cx7p-nhr2-v3ay" }, { "vulnerability": "VCID-dgk8-b6fk-t7b6" }, { "vulnerability": "VCID-fbf4-mwnn-vqdp" }, { "vulnerability": "VCID-feqd-qmgg-kyer" }, { "vulnerability": "VCID-g76c-qem2-pyeq" }, { "vulnerability": "VCID-gfwy-pxzr-gqa6" }, { "vulnerability": "VCID-h27f-krz7-bkdv" }, { "vulnerability": "VCID-h8wv-qjp1-abe5" }, { "vulnerability": "VCID-hqh8-vz5n-23c9" }, { "vulnerability": "VCID-hsza-kpb5-vqb9" }, { "vulnerability": "VCID-k9d9-tfcf-byf3" }, { "vulnerability": "VCID-knwc-32r8-b7cu" }, { "vulnerability": "VCID-m4v4-63we-dqex" }, { "vulnerability": "VCID-mkyj-pu8d-kbbu" }, { "vulnerability": "VCID-n8g7-9k7s-17g3" }, { "vulnerability": "VCID-n9u1-b4b8-sqft" }, { "vulnerability": "VCID-ngzk-excs-akbw" }, { "vulnerability": "VCID-njj5-wx27-xqd4" }, { "vulnerability": "VCID-nnw4-axam-qbb2" }, { "vulnerability": "VCID-npjj-h25x-c7ge" }, { "vulnerability": "VCID-pknf-eqgp-nqba" }, { "vulnerability": "VCID-pnd8-8z2d-4bh3" }, { "vulnerability": "VCID-qncn-bvgd-r3eq" }, { "vulnerability": "VCID-s2hb-xe27-ryeq" }, { "vulnerability": "VCID-sptp-9b5b-r7gq" }, { "vulnerability": "VCID-tb2p-ef7f-f7cj" }, { "vulnerability": "VCID-th8h-py4c-47da" }, { "vulnerability": "VCID-urry-mwtn-9ua4" }, { "vulnerability": "VCID-v4se-wza6-a3dt" }, { "vulnerability": "VCID-wgdh-xnty-mbga" }, { "vulnerability": "VCID-xswq-6aae-nqfb" }, { "vulnerability": "VCID-y455-nxwt-7ygd" }, { "vulnerability": "VCID-zez2-rb1h-6yef" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.9.1-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036496?format=api", "purl": "pkg:deb/debian/libraw@0.9.1-1%2Bdeb6u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1p46-52y8-kbgb" }, { "vulnerability": "VCID-25js-gs2n-jbfb" }, { "vulnerability": "VCID-33xw-gu7q-3uht" }, { "vulnerability": "VCID-34d5-3aug-ffgw" }, { "vulnerability": "VCID-43af-u5hy-afcg" }, { "vulnerability": "VCID-4ksq-fpwc-t3fq" }, { "vulnerability": "VCID-54h1-vj6r-4ue5" }, { "vulnerability": "VCID-57aw-3kt4-5fd8" }, { "vulnerability": "VCID-5qx5-u16v-vfgz" }, { "vulnerability": "VCID-6r3y-tdry-guc3" }, { "vulnerability": "VCID-88vk-c7wu-fffr" }, { "vulnerability": "VCID-8g8a-1egc-pbhs" }, { "vulnerability": "VCID-8nfh-uny2-2yay" }, { "vulnerability": "VCID-aa14-ypvj-pfen" }, { "vulnerability": "VCID-aakc-8r79-7bbs" }, { "vulnerability": "VCID-abzn-gut6-y3cz" }, { "vulnerability": "VCID-affs-bchw-93bx" }, { "vulnerability": "VCID-b7yv-7e6a-nfhy" }, { "vulnerability": "VCID-c7f1-d627-z3dm" }, { "vulnerability": "VCID-car8-7w1p-2uhx" }, { "vulnerability": "VCID-cm22-ayty-xqes" }, { "vulnerability": "VCID-cx7p-nhr2-v3ay" }, { "vulnerability": "VCID-dgk8-b6fk-t7b6" }, { "vulnerability": "VCID-fbf4-mwnn-vqdp" }, { "vulnerability": "VCID-feqd-qmgg-kyer" }, { "vulnerability": "VCID-g76c-qem2-pyeq" }, { "vulnerability": "VCID-gfwy-pxzr-gqa6" }, { "vulnerability": "VCID-h27f-krz7-bkdv" }, { "vulnerability": "VCID-h8wv-qjp1-abe5" }, { "vulnerability": "VCID-hqh8-vz5n-23c9" }, { "vulnerability": "VCID-hsza-kpb5-vqb9" }, { "vulnerability": "VCID-k9d9-tfcf-byf3" }, { "vulnerability": "VCID-knwc-32r8-b7cu" }, { "vulnerability": "VCID-m4v4-63we-dqex" }, { "vulnerability": "VCID-mkyj-pu8d-kbbu" }, { "vulnerability": "VCID-n8g7-9k7s-17g3" }, { "vulnerability": "VCID-n9u1-b4b8-sqft" }, { "vulnerability": "VCID-ngzk-excs-akbw" }, { "vulnerability": "VCID-njj5-wx27-xqd4" }, { "vulnerability": "VCID-nnw4-axam-qbb2" }, { "vulnerability": "VCID-npjj-h25x-c7ge" }, { "vulnerability": "VCID-pknf-eqgp-nqba" }, { "vulnerability": "VCID-pnd8-8z2d-4bh3" }, { "vulnerability": "VCID-qncn-bvgd-r3eq" }, { "vulnerability": "VCID-s2hb-xe27-ryeq" }, { "vulnerability": "VCID-sptp-9b5b-r7gq" }, { "vulnerability": "VCID-tb2p-ef7f-f7cj" }, { "vulnerability": "VCID-th8h-py4c-47da" }, { "vulnerability": "VCID-urry-mwtn-9ua4" }, { "vulnerability": "VCID-v4se-wza6-a3dt" }, { "vulnerability": "VCID-wgdh-xnty-mbga" }, { "vulnerability": "VCID-xswq-6aae-nqfb" }, { "vulnerability": "VCID-y455-nxwt-7ygd" }, { "vulnerability": "VCID-zez2-rb1h-6yef" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.9.1-1%252Bdeb6u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036497?format=api", "purl": "pkg:deb/debian/libraw@0.14.6-2%2Bdeb7u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1p46-52y8-kbgb" }, { "vulnerability": "VCID-25js-gs2n-jbfb" }, { "vulnerability": "VCID-33xw-gu7q-3uht" }, { "vulnerability": "VCID-34d5-3aug-ffgw" }, { "vulnerability": "VCID-43af-u5hy-afcg" }, { "vulnerability": "VCID-4ksq-fpwc-t3fq" }, { "vulnerability": "VCID-54h1-vj6r-4ue5" }, { "vulnerability": "VCID-57aw-3kt4-5fd8" }, { "vulnerability": "VCID-5qx5-u16v-vfgz" }, { "vulnerability": "VCID-6r3y-tdry-guc3" }, { "vulnerability": "VCID-88vk-c7wu-fffr" }, { "vulnerability": "VCID-8g8a-1egc-pbhs" }, { "vulnerability": "VCID-8nfh-uny2-2yay" }, { "vulnerability": "VCID-aa14-ypvj-pfen" }, { "vulnerability": "VCID-aakc-8r79-7bbs" }, { "vulnerability": "VCID-abzn-gut6-y3cz" }, { "vulnerability": "VCID-affs-bchw-93bx" }, { "vulnerability": "VCID-b7yv-7e6a-nfhy" }, { "vulnerability": "VCID-c7f1-d627-z3dm" }, { "vulnerability": "VCID-car8-7w1p-2uhx" }, { "vulnerability": "VCID-cm22-ayty-xqes" }, { "vulnerability": "VCID-cx7p-nhr2-v3ay" }, { "vulnerability": "VCID-dgk8-b6fk-t7b6" }, { "vulnerability": "VCID-fbf4-mwnn-vqdp" }, { "vulnerability": "VCID-feqd-qmgg-kyer" }, { "vulnerability": "VCID-g76c-qem2-pyeq" }, { "vulnerability": "VCID-gfwy-pxzr-gqa6" }, { "vulnerability": "VCID-h27f-krz7-bkdv" }, { "vulnerability": "VCID-h8wv-qjp1-abe5" }, { "vulnerability": "VCID-hqh8-vz5n-23c9" }, { "vulnerability": "VCID-hsza-kpb5-vqb9" }, { "vulnerability": "VCID-k9d9-tfcf-byf3" }, { "vulnerability": "VCID-knwc-32r8-b7cu" }, { "vulnerability": "VCID-m4v4-63we-dqex" }, { "vulnerability": "VCID-mkyj-pu8d-kbbu" }, { "vulnerability": "VCID-n8g7-9k7s-17g3" }, { "vulnerability": "VCID-n9u1-b4b8-sqft" }, { "vulnerability": "VCID-ngzk-excs-akbw" }, { "vulnerability": "VCID-njj5-wx27-xqd4" }, { "vulnerability": "VCID-nnw4-axam-qbb2" }, { "vulnerability": "VCID-npjj-h25x-c7ge" }, { "vulnerability": "VCID-pknf-eqgp-nqba" }, { "vulnerability": "VCID-pnd8-8z2d-4bh3" }, { "vulnerability": "VCID-qncn-bvgd-r3eq" }, { "vulnerability": "VCID-s2hb-xe27-ryeq" }, { "vulnerability": "VCID-sptp-9b5b-r7gq" }, { "vulnerability": "VCID-tb2p-ef7f-f7cj" }, { "vulnerability": "VCID-th8h-py4c-47da" }, { "vulnerability": "VCID-urry-mwtn-9ua4" }, { "vulnerability": "VCID-v4se-wza6-a3dt" }, { "vulnerability": "VCID-wgdh-xnty-mbga" }, { "vulnerability": "VCID-xswq-6aae-nqfb" }, { "vulnerability": "VCID-y455-nxwt-7ygd" }, { "vulnerability": "VCID-zez2-rb1h-6yef" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.14.6-2%252Bdeb7u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036498?format=api", "purl": "pkg:deb/debian/libraw@0.16.0-9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1p46-52y8-kbgb" }, { "vulnerability": "VCID-25js-gs2n-jbfb" }, { "vulnerability": "VCID-33xw-gu7q-3uht" }, { "vulnerability": "VCID-34d5-3aug-ffgw" }, { "vulnerability": "VCID-43af-u5hy-afcg" }, { "vulnerability": "VCID-4ksq-fpwc-t3fq" }, { "vulnerability": "VCID-54h1-vj6r-4ue5" }, { "vulnerability": "VCID-57aw-3kt4-5fd8" }, { "vulnerability": "VCID-5qx5-u16v-vfgz" }, { "vulnerability": "VCID-6r3y-tdry-guc3" }, { "vulnerability": "VCID-88vk-c7wu-fffr" }, { "vulnerability": "VCID-8g8a-1egc-pbhs" }, { "vulnerability": "VCID-8nfh-uny2-2yay" }, { "vulnerability": "VCID-aa14-ypvj-pfen" }, { "vulnerability": "VCID-aakc-8r79-7bbs" }, { "vulnerability": "VCID-abzn-gut6-y3cz" }, { "vulnerability": "VCID-affs-bchw-93bx" }, { "vulnerability": "VCID-b7yv-7e6a-nfhy" }, { "vulnerability": "VCID-car8-7w1p-2uhx" }, { "vulnerability": "VCID-cm22-ayty-xqes" }, { "vulnerability": "VCID-cx7p-nhr2-v3ay" }, { "vulnerability": "VCID-dgk8-b6fk-t7b6" }, { "vulnerability": "VCID-fbf4-mwnn-vqdp" }, { "vulnerability": "VCID-feqd-qmgg-kyer" }, { "vulnerability": "VCID-g76c-qem2-pyeq" }, { "vulnerability": "VCID-gfwy-pxzr-gqa6" }, { "vulnerability": "VCID-h27f-krz7-bkdv" }, { "vulnerability": "VCID-h8wv-qjp1-abe5" }, { "vulnerability": "VCID-hqh8-vz5n-23c9" }, { "vulnerability": "VCID-hsza-kpb5-vqb9" }, { "vulnerability": "VCID-k9d9-tfcf-byf3" }, { "vulnerability": "VCID-knwc-32r8-b7cu" }, { "vulnerability": "VCID-m4v4-63we-dqex" }, { "vulnerability": "VCID-mkyj-pu8d-kbbu" }, { "vulnerability": "VCID-n8g7-9k7s-17g3" }, { "vulnerability": "VCID-n9u1-b4b8-sqft" }, { "vulnerability": "VCID-njj5-wx27-xqd4" }, { "vulnerability": "VCID-nnw4-axam-qbb2" }, { "vulnerability": "VCID-npjj-h25x-c7ge" }, { "vulnerability": "VCID-pknf-eqgp-nqba" }, { "vulnerability": "VCID-pnd8-8z2d-4bh3" }, { "vulnerability": "VCID-s2hb-xe27-ryeq" }, { "vulnerability": "VCID-sptp-9b5b-r7gq" }, { "vulnerability": "VCID-tb2p-ef7f-f7cj" }, { "vulnerability": "VCID-th8h-py4c-47da" }, { "vulnerability": "VCID-urry-mwtn-9ua4" }, { "vulnerability": "VCID-v4se-wza6-a3dt" }, { "vulnerability": "VCID-wgdh-xnty-mbga" }, { "vulnerability": "VCID-xswq-6aae-nqfb" }, { "vulnerability": "VCID-y455-nxwt-7ygd" }, { "vulnerability": "VCID-zez2-rb1h-6yef" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.16.0-9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036499?format=api", "purl": "pkg:deb/debian/libraw@0.16.0-9%2Bdeb8u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1p46-52y8-kbgb" }, { "vulnerability": "VCID-25js-gs2n-jbfb" }, { "vulnerability": "VCID-33xw-gu7q-3uht" }, { "vulnerability": "VCID-34d5-3aug-ffgw" }, { "vulnerability": "VCID-43af-u5hy-afcg" }, { "vulnerability": "VCID-4ksq-fpwc-t3fq" }, { "vulnerability": "VCID-54h1-vj6r-4ue5" }, { "vulnerability": "VCID-57aw-3kt4-5fd8" }, { "vulnerability": "VCID-5qx5-u16v-vfgz" }, { "vulnerability": "VCID-6r3y-tdry-guc3" }, { "vulnerability": "VCID-88vk-c7wu-fffr" }, { "vulnerability": "VCID-8g8a-1egc-pbhs" }, { "vulnerability": "VCID-8nfh-uny2-2yay" }, { "vulnerability": "VCID-aa14-ypvj-pfen" }, { "vulnerability": "VCID-aakc-8r79-7bbs" }, { "vulnerability": "VCID-abzn-gut6-y3cz" }, { "vulnerability": "VCID-affs-bchw-93bx" }, { "vulnerability": "VCID-b7yv-7e6a-nfhy" }, { "vulnerability": "VCID-car8-7w1p-2uhx" }, { "vulnerability": "VCID-cm22-ayty-xqes" }, { "vulnerability": "VCID-cx7p-nhr2-v3ay" }, { "vulnerability": "VCID-dgk8-b6fk-t7b6" }, { "vulnerability": "VCID-fbf4-mwnn-vqdp" }, { "vulnerability": "VCID-feqd-qmgg-kyer" }, { "vulnerability": "VCID-g76c-qem2-pyeq" }, { "vulnerability": "VCID-gfwy-pxzr-gqa6" }, { "vulnerability": "VCID-h27f-krz7-bkdv" }, { "vulnerability": "VCID-h8wv-qjp1-abe5" }, { "vulnerability": "VCID-hqh8-vz5n-23c9" }, { "vulnerability": "VCID-hsza-kpb5-vqb9" }, { "vulnerability": "VCID-k9d9-tfcf-byf3" }, { "vulnerability": "VCID-knwc-32r8-b7cu" }, { "vulnerability": "VCID-m4v4-63we-dqex" }, { "vulnerability": "VCID-mkyj-pu8d-kbbu" }, { "vulnerability": "VCID-n8g7-9k7s-17g3" }, { "vulnerability": "VCID-n9u1-b4b8-sqft" }, { "vulnerability": "VCID-njj5-wx27-xqd4" }, { "vulnerability": "VCID-nnw4-axam-qbb2" }, { "vulnerability": "VCID-npjj-h25x-c7ge" }, { "vulnerability": "VCID-pknf-eqgp-nqba" }, { "vulnerability": "VCID-pnd8-8z2d-4bh3" }, { "vulnerability": "VCID-s2hb-xe27-ryeq" }, { "vulnerability": "VCID-sptp-9b5b-r7gq" }, { "vulnerability": "VCID-tb2p-ef7f-f7cj" }, { "vulnerability": "VCID-th8h-py4c-47da" }, { "vulnerability": "VCID-urry-mwtn-9ua4" }, { "vulnerability": "VCID-v4se-wza6-a3dt" }, { "vulnerability": "VCID-wgdh-xnty-mbga" }, { "vulnerability": "VCID-xswq-6aae-nqfb" }, { "vulnerability": "VCID-y455-nxwt-7ygd" }, { "vulnerability": "VCID-zez2-rb1h-6yef" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.16.0-9%252Bdeb8u3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036869?format=api", "purl": "pkg:deb/debian/libraw@0.17.2-6%2Bdeb9u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1p46-52y8-kbgb" }, { "vulnerability": "VCID-25js-gs2n-jbfb" }, { "vulnerability": "VCID-33xw-gu7q-3uht" }, { "vulnerability": "VCID-34d5-3aug-ffgw" }, { "vulnerability": "VCID-43af-u5hy-afcg" }, { "vulnerability": "VCID-4ksq-fpwc-t3fq" }, { "vulnerability": "VCID-54h1-vj6r-4ue5" }, { "vulnerability": "VCID-57aw-3kt4-5fd8" }, { "vulnerability": "VCID-6r3y-tdry-guc3" }, { "vulnerability": "VCID-88vk-c7wu-fffr" }, { "vulnerability": "VCID-8g8a-1egc-pbhs" }, { "vulnerability": "VCID-8nfh-uny2-2yay" }, { "vulnerability": "VCID-aa14-ypvj-pfen" }, { "vulnerability": "VCID-aakc-8r79-7bbs" }, { "vulnerability": "VCID-abzn-gut6-y3cz" }, { "vulnerability": "VCID-affs-bchw-93bx" }, { "vulnerability": "VCID-b7yv-7e6a-nfhy" }, { "vulnerability": "VCID-cm22-ayty-xqes" }, { "vulnerability": "VCID-cx7p-nhr2-v3ay" }, { "vulnerability": "VCID-dgk8-b6fk-t7b6" }, { "vulnerability": "VCID-fbf4-mwnn-vqdp" }, { "vulnerability": "VCID-feqd-qmgg-kyer" }, { "vulnerability": "VCID-g76c-qem2-pyeq" }, { "vulnerability": "VCID-gfwy-pxzr-gqa6" }, { "vulnerability": "VCID-h27f-krz7-bkdv" }, { "vulnerability": "VCID-h8wv-qjp1-abe5" }, { "vulnerability": "VCID-hqh8-vz5n-23c9" }, { "vulnerability": "VCID-hsza-kpb5-vqb9" }, { "vulnerability": "VCID-k9d9-tfcf-byf3" }, { "vulnerability": "VCID-knwc-32r8-b7cu" }, { "vulnerability": "VCID-m4v4-63we-dqex" }, { "vulnerability": "VCID-mkyj-pu8d-kbbu" }, { "vulnerability": "VCID-n8g7-9k7s-17g3" }, { "vulnerability": "VCID-n9u1-b4b8-sqft" }, { "vulnerability": "VCID-njj5-wx27-xqd4" }, { "vulnerability": "VCID-nnw4-axam-qbb2" }, { "vulnerability": "VCID-npjj-h25x-c7ge" }, { "vulnerability": "VCID-pknf-eqgp-nqba" }, { "vulnerability": "VCID-pnd8-8z2d-4bh3" }, { "vulnerability": "VCID-s2hb-xe27-ryeq" }, { "vulnerability": "VCID-sptp-9b5b-r7gq" }, { "vulnerability": "VCID-tb2p-ef7f-f7cj" }, { "vulnerability": "VCID-th8h-py4c-47da" }, { "vulnerability": "VCID-urry-mwtn-9ua4" }, { "vulnerability": "VCID-v4se-wza6-a3dt" }, { "vulnerability": "VCID-wgdh-xnty-mbga" }, { "vulnerability": "VCID-y455-nxwt-7ygd" }, { "vulnerability": "VCID-zez2-rb1h-6yef" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.17.2-6%252Bdeb9u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1049099?format=api", "purl": "pkg:deb/debian/libraw@0.19.2-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-25js-gs2n-jbfb" }, { "vulnerability": "VCID-33xw-gu7q-3uht" }, { "vulnerability": "VCID-43af-u5hy-afcg" }, { "vulnerability": "VCID-54h1-vj6r-4ue5" }, { "vulnerability": "VCID-88vk-c7wu-fffr" }, { "vulnerability": "VCID-aa14-ypvj-pfen" }, { "vulnerability": "VCID-abzn-gut6-y3cz" }, { "vulnerability": "VCID-cx7p-nhr2-v3ay" }, { "vulnerability": "VCID-fbf4-mwnn-vqdp" }, { "vulnerability": "VCID-hqh8-vz5n-23c9" }, { "vulnerability": "VCID-n9u1-b4b8-sqft" }, { "vulnerability": "VCID-npjj-h25x-c7ge" }, { "vulnerability": "VCID-pnd8-8z2d-4bh3" }, { "vulnerability": "VCID-th8h-py4c-47da" }, { "vulnerability": "VCID-urry-mwtn-9ua4" }, { "vulnerability": "VCID-y455-nxwt-7ygd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libraw@0.19.2-2" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24889.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24889.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24889", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76051", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76054", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76086", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76067", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.761", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76114", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.7614", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76115", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76113", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76154", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76157", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76179", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76189", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76201", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76212", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76241", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76264", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.7625", "published_at": "2026-05-11T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76265", "published_at": "2026-05-12T12:55:00Z" }, { "value": "0.00931", "scoring_system": "epss", "scoring_elements": "0.76315", "published_at": "2026-05-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24889" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24889", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24889" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/LibRaw/LibRaw/issues/334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/LibRaw/LibRaw/issues/334" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1882339", "reference_id": "1882339", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1882339" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-24889", "reference_id": "CVE-2020-24889", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-24889" }, { "reference_url": "https://security.gentoo.org/glsa/202010-05", "reference_id": "GLSA-202010-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202010-05" } ], "weaknesses": [ { "cwe_id": 120, "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')", "description": "The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "5.3 - 5.9", "exploitability": "0.5", "weighted_severity": "4.8", "risk_score": 2.4, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-abzn-gut6-y3cz" }