{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37066?format=json","vulnerability_id":"VCID-pd32-7ef2-h7ac","summary":"Multiple vulnerabilities have been found in libssh, allowing\n    attackers to execute arbitrary code or cause Denial of Service.","aliases":[{"alias":"CVE-2012-4559"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/928710?format=json","purl":"pkg:deb/debian/libssh@0.5.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libssh@0.5.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/572150?format=json","purl":"pkg:deb/debian/libssh@0.5.4-1%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-12kz-zuqz-9qgy"},{"vulnerability":"VCID-18h1-vmsu-7bbf"},{"vulnerability":"VCID-2gku-dprh-sqdy"},{"vulnerability":"VCID-5za4-bdf6-cuer"},{"vulnerability":"VCID-72cq-k33t-zbhu"},{"vulnerability":"VCID-7624-3atp-tubx"},{"vulnerability":"VCID-d7s9-1eyc-97cz"},{"vulnerability":"VCID-dwk4-jatc-w3ce"},{"vulnerability":"VCID-gwb5-qprr-pfez"},{"vulnerability":"VCID-h9rm-4eet-vuhq"},{"vulnerability":"VCID-jg4x-5waf-g3f5"},{"vulnerability":"VCID-jzn6-bzzf-nugp"},{"vulnerability":"VCID-kek1-z4s4-tudn"},{"vulnerability":"VCID-nztm-ghw7-v7c1"},{"vulnerability":"VCID-q3j5-wme8-4kc4"},{"vulnerability":"VCID-t8nv-wfbj-13e5"},{"vulnerability":"VCID-u5ts-n3fz-nud9"},{"vulnerability":"VCID-vytb-d923-nkan"},{"vulnerability":"VCID-wgkw-5cae-s3ej"},{"vulnerability":"VCID-y8n1-2dwh-qucf"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libssh@0.5.4-1%252Bdeb7u3"},{"url":"http://public2.vulnerablecode.io/api/packages/928711?format=json","purl":"pkg:deb/debian/libssh@0.9.8-0%2Bdeb11u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4qxq-4833-s7bd"},{"vulnerability":"VCID-8zdu-udyx-qkhu"},{"vulnerability":"VCID-hhun-qvy9-pydj"},{"vulnerability":"VCID-p6ex-bypb-n3fg"},{"vulnerability":"VCID-v97m-zm6x-gfga"},{"vulnerability":"VCID-y3hu-uqgn-7uhr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libssh@0.9.8-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/928709?format=json","purl":"pkg:deb/debian/libssh@0.10.6-0%2Bdeb12u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4qxq-4833-s7bd"},{"vulnerability":"VCID-8zdu-udyx-qkhu"},{"vulnerability":"VCID-hhun-qvy9-pydj"},{"vulnerability":"VCID-p6ex-bypb-n3fg"},{"vulnerability":"VCID-v97m-zm6x-gfga"},{"vulnerability":"VCID-y3hu-uqgn-7uhr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libssh@0.10.6-0%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/928713?format=json","purl":"pkg:deb/debian/libssh@0.11.2-1%2Bdeb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4qxq-4833-s7bd"},{"vulnerability":"VCID-8zdu-udyx-qkhu"},{"vulnerability":"VCID-hhun-qvy9-pydj"},{"vulnerability":"VCID-p6ex-bypb-n3fg"},{"vulnerability":"VCID-v97m-zm6x-gfga"},{"vulnerability":"VCID-y3hu-uqgn-7uhr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libssh@0.11.2-1%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/928712?format=json","purl":"pkg:deb/debian/libssh@0.12.0-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libssh@0.12.0-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/74580?format=json","purl":"pkg:ebuild/net-libs/libssh@0.5.3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/libssh@0.5.3"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/572147?format=json","purl":"pkg:deb/debian/libssh@0.2%2Bsvn20070321-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-12kz-zuqz-9qgy"},{"vulnerability":"VCID-14g6-yzvh-skan"},{"vulnerability":"VCID-18h1-vmsu-7bbf"},{"vulnerability":"VCID-2gku-dprh-sqdy"},{"vulnerability":"VCID-5za4-bdf6-cuer"},{"vulnerability":"VCID-72cq-k33t-zbhu"},{"vulnerability":"VCID-7624-3atp-tubx"},{"vulnerability":"VCID-97za-h3y1-5fh4"},{"vulnerability":"VCID-d7s9-1eyc-97cz"},{"vulnerability":"VCID-dwk4-jatc-w3ce"},{"vulnerability":"VCID-eh3n-cywe-sqes"},{"vulnerability":"VCID-gwb5-qprr-pfez"},{"vulnerability":"VCID-h9rm-4eet-vuhq"},{"vulnerability":"VCID-jg4x-5waf-g3f5"},{"vulnerability":"VCID-jzn6-bzzf-nugp"},{"vulnerability":"VCID-kek1-z4s4-tudn"},{"vulnerability":"VCID-nztm-ghw7-v7c1"},{"vulnerability":"VCID-pd32-7ef2-h7ac"},{"vulnerability":"VCID-q3j5-wme8-4kc4"},{"vulnerability":"VCID-t8nv-wfbj-13e5"},{"vulnerability":"VCID-u5ts-n3fz-nud9"},{"vulnerability":"VCID-u9xh-yxdy-jbca"},{"vulnerability":"VCID-vwsd-4r8c-47b9"},{"vulnerability":"VCID-vytb-d923-nkan"},{"vulnerability":"VCID-wgkw-5cae-s3ej"},{"vulnerability":"VCID-y8n1-2dwh-qucf"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libssh@0.2%252Bsvn20070321-4"},{"url":"http://public2.vulnerablecode.io/api/packages/572148?format=json","purl":"pkg:deb/debian/libssh@0.4.5-3%2Bsqueeze2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-12kz-zuqz-9qgy"},{"vulnerability":"VCID-14g6-yzvh-skan"},{"vulnerability":"VCID-18h1-vmsu-7bbf"},{"vulnerability":"VCID-2gku-dprh-sqdy"},{"vulnerability":"VCID-5za4-bdf6-cuer"},{"vulnerability":"VCID-72cq-k33t-zbhu"},{"vulnerability":"VCID-7624-3atp-tubx"},{"vulnerability":"VCID-97za-h3y1-5fh4"},{"vulnerability":"VCID-d7s9-1eyc-97cz"},{"vulnerability":"VCID-dwk4-jatc-w3ce"},{"vulnerability":"VCID-eh3n-cywe-sqes"},{"vulnerability":"VCID-gwb5-qprr-pfez"},{"vulnerability":"VCID-h9rm-4eet-vuhq"},{"vulnerability":"VCID-jg4x-5waf-g3f5"},{"vulnerability":"VCID-jzn6-bzzf-nugp"},{"vulnerability":"VCID-kek1-z4s4-tudn"},{"vulnerability":"VCID-nztm-ghw7-v7c1"},{"vulnerability":"VCID-pd32-7ef2-h7ac"},{"vulnerability":"VCID-q3j5-wme8-4kc4"},{"vulnerability":"VCID-t8nv-wfbj-13e5"},{"vulnerability":"VCID-u5ts-n3fz-nud9"},{"vulnerability":"VCID-u9xh-yxdy-jbca"},{"vulnerability":"VCID-vwsd-4r8c-47b9"},{"vulnerability":"VCID-vytb-d923-nkan"},{"vulnerability":"VCID-wgkw-5cae-s3ej"},{"vulnerability":"VCID-y8n1-2dwh-qucf"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libssh@0.4.5-3%252Bsqueeze2"},{"url":"http://public2.vulnerablecode.io/api/packages/572149?format=json","purl":"pkg:deb/debian/libssh@0.4.5-3%2Bsqueeze3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-12kz-zuqz-9qgy"},{"vulnerability":"VCID-14g6-yzvh-skan"},{"vulnerability":"VCID-18h1-vmsu-7bbf"},{"vulnerability":"VCID-2gku-dprh-sqdy"},{"vulnerability":"VCID-5za4-bdf6-cuer"},{"vulnerability":"VCID-72cq-k33t-zbhu"},{"vulnerability":"VCID-7624-3atp-tubx"},{"vulnerability":"VCID-97za-h3y1-5fh4"},{"vulnerability":"VCID-d7s9-1eyc-97cz"},{"vulnerability":"VCID-dwk4-jatc-w3ce"},{"vulnerability":"VCID-eh3n-cywe-sqes"},{"vulnerability":"VCID-gwb5-qprr-pfez"},{"vulnerability":"VCID-h9rm-4eet-vuhq"},{"vulnerability":"VCID-jg4x-5waf-g3f5"},{"vulnerability":"VCID-jzn6-bzzf-nugp"},{"vulnerability":"VCID-kek1-z4s4-tudn"},{"vulnerability":"VCID-nztm-ghw7-v7c1"},{"vulnerability":"VCID-pd32-7ef2-h7ac"},{"vulnerability":"VCID-q3j5-wme8-4kc4"},{"vulnerability":"VCID-t8nv-wfbj-13e5"},{"vulnerability":"VCID-u5ts-n3fz-nud9"},{"vulnerability":"VCID-u9xh-yxdy-jbca"},{"vulnerability":"VCID-vwsd-4r8c-47b9"},{"vulnerability":"VCID-vytb-d923-nkan"},{"vulnerability":"VCID-wgkw-5cae-s3ej"},{"vulnerability":"VCID-y8n1-2dwh-qucf"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libssh@0.4.5-3%252Bsqueeze3"}],"references":[{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093313.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093313.html"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093474.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093474.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00002.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00002.html"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2012-12/msg00016.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-updates/2012-12/msg00016.html"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2013-01/msg00021.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-updates/2013-01/msg00021.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-4559","reference_id":"","reference_type":"","scores":[{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.8985","published_at":"2026-05-16T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89711","published_at":"2026-04-01T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89714","published_at":"2026-04-02T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89729","published_at":"2026-04-04T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89731","published_at":"2026-04-07T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89748","published_at":"2026-04-08T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89755","published_at":"2026-04-09T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89762","published_at":"2026-04-11T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.8976","published_at":"2026-04-12T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89753","published_at":"2026-04-13T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.8977","published_at":"2026-04-18T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89765","published_at":"2026-04-21T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89779","published_at":"2026-04-29T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.8978","published_at":"2026-04-26T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89792","published_at":"2026-05-05T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89807","published_at":"2026-05-07T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89818","published_at":"2026-05-09T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89814","published_at":"2026-05-11T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89822","published_at":"2026-05-12T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89839","published_at":"2026-05-14T12:55:00Z"},{"value":"0.05036","scoring_system":"epss","scoring_elements":"0.89849","published_at":"2026-05-15T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-4559"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=871612","reference_id":"","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=871612"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4559"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/80218","reference_id":"","reference_type":"","scores":[],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/80218"},{"reference_url":"http://www.debian.org/security/2012/dsa-2577","reference_id":"","reference_type":"","scores":[],"url":"http://www.debian.org/security/2012/dsa-2577"},{"reference_url":"http://www.libssh.org/2012/11/20/libssh-0-5-3-security-release/","reference_id":"","reference_type":"","scores":[],"url":"http://www.libssh.org/2012/11/20/libssh-0-5-3-security-release/"},{"reference_url":"http://www.mandriva.com/security/advisories?name=MDVSA-2012:175","reference_id":"","reference_type":"","scores":[],"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2012:175"},{"reference_url":"http://www.openwall.com/lists/oss-security/2012/11/20/3","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2012/11/20/3"},{"reference_url":"http://www.securityfocus.com/bid/56604","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/56604"},{"reference_url":"http://www.ubuntu.com/usn/USN-1640-1","reference_id":"","reference_type":"","scores":[],"url":"http://www.ubuntu.com/usn/USN-1640-1"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.4.7:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libssh:libssh:0.4.7:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.4.7:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.4.8:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libssh:libssh:0.4.8:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.4.8:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.5.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libssh:libssh:0.5.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.5.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.5.0:rc1:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libssh:libssh:0.5.0:rc1:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.5.0:rc1:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.5.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libssh:libssh:0.5.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libssh:libssh:0.5.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2012-4559","reference_id":"CVE-2012-4559","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2012-4559"},{"reference_url":"https://security.gentoo.org/glsa/201402-26","reference_id":"GLSA-201402-26","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201402-26"},{"reference_url":"https://usn.ubuntu.com/1640-1/","reference_id":"USN-1640-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1640-1/"}],"weaknesses":[{"cwe_id":399,"name":"Resource Management Errors","description":"Weaknesses in this category are related to improper management of system resources."}],"exploits":[],"severity_range_score":"6.8 - 6.8","exploitability":"0.5","weighted_severity":"6.1","risk_score":3.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pd32-7ef2-h7ac"}