{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/41559?format=json","vulnerability_id":"VCID-ped1-7edb-hudu","summary":"Multiple vulnerabilities have been discovered in GD, allowing for the\n    execution of arbitrary code.","aliases":[{"alias":"CVE-2007-3474"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/75717?format=json","purl":"pkg:ebuild/media-libs/gd@2.0.35","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gd@2.0.35"}],"affected_packages":[],"references":[{"reference_url":"ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz","reference_id":"","reference_type":"","scores":[],"url":"ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz"},{"reference_url":"http://fedoranews.org/updates/FEDORA-2007-205.shtml","reference_id":"","reference_type":"","scores":[],"url":"http://fedoranews.org/updates/FEDORA-2007-205.shtml"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html"},{"reference_url":"http://osvdb.org/37743","reference_id":"","reference_type":"","scores":[],"url":"http://osvdb.org/37743"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3474.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3474.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3474","reference_id":"","reference_type":"","scores":[{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.91063","published_at":"2026-05-14T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.90918","published_at":"2026-04-01T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.90923","published_at":"2026-04-02T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.90932","published_at":"2026-04-04T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.90943","published_at":"2026-04-07T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.90954","published_at":"2026-04-08T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.9096","published_at":"2026-04-09T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.90969","published_at":"2026-04-13T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.9097","published_at":"2026-04-12T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.90994","published_at":"2026-04-16T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.90992","published_at":"2026-04-18T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.90993","published_at":"2026-04-21T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.91007","published_at":"2026-04-24T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.91005","published_at":"2026-04-26T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.91002","published_at":"2026-04-29T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.91017","published_at":"2026-05-05T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.91032","published_at":"2026-05-07T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.91046","published_at":"2026-05-09T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.91044","published_at":"2026-05-11T12:55:00Z"},{"value":"0.06313","scoring_system":"epss","scoring_elements":"0.91053","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3474"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=277421","reference_id":"","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=277421"},{"reference_url":"http://secunia.com/advisories/25855","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/25855"},{"reference_url":"http://secunia.com/advisories/25860","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/25860"},{"reference_url":"http://secunia.com/advisories/26272","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/26272"},{"reference_url":"http://secunia.com/advisories/26390","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/26390"},{"reference_url":"http://secunia.com/advisories/26415","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/26415"},{"reference_url":"http://secunia.com/advisories/26467","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/26467"},{"reference_url":"http://secunia.com/advisories/26663","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/26663"},{"reference_url":"http://secunia.com/advisories/26766","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/26766"},{"reference_url":"http://secunia.com/advisories/26856","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/26856"},{"reference_url":"http://secunia.com/advisories/30168","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/30168"},{"reference_url":"http://secunia.com/advisories/42813","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/42813"},{"reference_url":"http://security.gentoo.org/glsa/glsa-200708-05.xml","reference_id":"","reference_type":"","scores":[],"url":"http://security.gentoo.org/glsa/glsa-200708-05.xml"},{"reference_url":"http://security.gentoo.org/glsa/glsa-200711-34.xml","reference_id":"","reference_type":"","scores":[],"url":"http://security.gentoo.org/glsa/glsa-200711-34.xml"},{"reference_url":"http://security.gentoo.org/glsa/glsa-200805-13.xml","reference_id":"","reference_type":"","scores":[],"url":"http://security.gentoo.org/glsa/glsa-200805-13.xml"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/35110","reference_id":"","reference_type":"","scores":[],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/35110"},{"reference_url":"https://issues.rpath.com/browse/RPL-1643","reference_id":"","reference_type":"","scores":[],"url":"https://issues.rpath.com/browse/RPL-1643"},{"reference_url":"http://www.libgd.org/ReleaseNote020035","reference_id":"","reference_type":"","scores":[],"url":"http://www.libgd.org/ReleaseNote020035"},{"reference_url":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:153","reference_id":"","reference_type":"","scores":[],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:153"},{"reference_url":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:164","reference_id":"","reference_type":"","scores":[],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:164"},{"reference_url":"http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html"},{"reference_url":"http://www.securityfocus.com/archive/1/478796/100/0/threaded","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/archive/1/478796/100/0/threaded"},{"reference_url":"http://www.securityfocus.com/bid/24651","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/24651"},{"reference_url":"http://www.trustix.org/errata/2007/0024/","reference_id":"","reference_type":"","scores":[],"url":"http://www.trustix.org/errata/2007/0024/"},{"reference_url":"http://www.vupen.com/english/advisories/2007/2336","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2007/2336"},{"reference_url":"http://www.vupen.com/english/advisories/2011/0022","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2011/0022"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=277091","reference_id":"277091","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=277091"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.33:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libgd:gd_graphics_library:2.0.33:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.33:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.34:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libgd:gd_graphics_library:2.0.34:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.34:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc1:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc1:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc1:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc2:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc2:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc2:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc1:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc1:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc1:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc2:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc2:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc2:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc3:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc3:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc3:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc4:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc4:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc4:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:*:rc5:*:*:*:*:*:*","reference_id":"cpe:2.3:a:libgd:gd_graphics_library:*:rc5:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:*:rc5:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-3474","reference_id":"CVE-2007-3474","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:N/I:N/A:P"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-3474"},{"reference_url":"https://security.gentoo.org/glsa/200708-05","reference_id":"GLSA-200708-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200708-05"}],"weaknesses":[],"exploits":[],"severity_range_score":"2.6 - 2.6","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ped1-7edb-hudu"}