{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46526?format=json","vulnerability_id":"VCID-zgxp-d9xm-8fhm","summary":"Multiple vulnerabilities have been identified in Sun Java Development Kit\n    (JDK) and Java Runtime Environment (JRE).","aliases":[{"alias":"CVE-2008-1193"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/76787?format=json","purl":"pkg:ebuild/app-emulation/emul-linux-x86-java@1.6.0.05","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/app-emulation/emul-linux-x86-java@1.6.0.05"},{"url":"http://public2.vulnerablecode.io/api/packages/76786?format=json","purl":"pkg:ebuild/dev-java/sun-jdk@1.6.0.05","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/sun-jdk@1.6.0.05"},{"url":"http://public2.vulnerablecode.io/api/packages/76785?format=json","purl":"pkg:ebuild/dev-java/sun-jre-bin@1.6.0.05","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/sun-jre-bin@1.6.0.05"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/129394?format=json","purl":"pkg:rpm/redhat/java-1.5.0-bea@1.5.0.14-1jpp.2?arch=el5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-87wm-5t49-cqgz"},{"vulnerability":"VCID-u6pz-tfzh-x7g2"},{"vulnerability":"VCID-zgxp-d9xm-8fhm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.5.0-bea@1.5.0.14-1jpp.2%3Farch=el5"},{"url":"http://public2.vulnerablecode.io/api/packages/129397?format=json","purl":"pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.7-1jpp.2?arch=el5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1un4-qapq-sbf3"},{"vulnerability":"VCID-87wm-5t49-cqgz"},{"vulnerability":"VCID-8h6v-tdt7-kbf8"},{"vulnerability":"VCID-9mme-h5fz-ffgx"},{"vulnerability":"VCID-d9fa-tvr9-gqdw"},{"vulnerability":"VCID-ds36-fjg3-jbg7"},{"vulnerability":"VCID-pqcy-hw6d-mbh1"},{"vulnerability":"VCID-u6pz-tfzh-x7g2"},{"vulnerability":"VCID-urch-z19w-sqft"},{"vulnerability":"VCID-zgxp-d9xm-8fhm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.7-1jpp.2%3Farch=el5"},{"url":"http://public2.vulnerablecode.io/api/packages/129398?format=json","purl":"pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.7-1jpp.2?arch=el4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1un4-qapq-sbf3"},{"vulnerability":"VCID-87wm-5t49-cqgz"},{"vulnerability":"VCID-8h6v-tdt7-kbf8"},{"vulnerability":"VCID-9mme-h5fz-ffgx"},{"vulnerability":"VCID-d9fa-tvr9-gqdw"},{"vulnerability":"VCID-ds36-fjg3-jbg7"},{"vulnerability":"VCID-pqcy-hw6d-mbh1"},{"vulnerability":"VCID-u6pz-tfzh-x7g2"},{"vulnerability":"VCID-urch-z19w-sqft"},{"vulnerability":"VCID-zgxp-d9xm-8fhm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.7-1jpp.2%3Farch=el4"},{"url":"http://public2.vulnerablecode.io/api/packages/129214?format=json","purl":"pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.8-1jpp.1?arch=el4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1un4-qapq-sbf3"},{"vulnerability":"VCID-2dyz-h2nf-a3bt"},{"vulnerability":"VCID-87wm-5t49-cqgz"},{"vulnerability":"VCID-8h6v-tdt7-kbf8"},{"vulnerability":"VCID-9mme-h5fz-ffgx"},{"vulnerability":"VCID-9uxa-vqmq-kug5"},{"vulnerability":"VCID-d9fa-tvr9-gqdw"},{"vulnerability":"VCID-ds36-fjg3-jbg7"},{"vulnerability":"VCID-kn3e-pb5g-euf1"},{"vulnerability":"VCID-nqfb-gk4v-3ugv"},{"vulnerability":"VCID-pqcy-hw6d-mbh1"},{"vulnerability":"VCID-sgk6-jd6h-nbhv"},{"vulnerability":"VCID-u6pz-tfzh-x7g2"},{"vulnerability":"VCID-urch-z19w-sqft"},{"vulnerability":"VCID-xfk5-vwgg-3bhp"},{"vulnerability":"VCID-zgxp-d9xm-8fhm"},{"vulnerability":"VCID-ztfa-8pv5-uydc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.8-1jpp.1%3Farch=el4"},{"url":"http://public2.vulnerablecode.io/api/packages/129387?format=json","purl":"pkg:rpm/redhat/java-1.5.0-sun@1.5.0.15-1jpp.2?arch=el5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1un4-qapq-sbf3"},{"vulnerability":"VCID-87wm-5t49-cqgz"},{"vulnerability":"VCID-8h6v-tdt7-kbf8"},{"vulnerability":"VCID-d9fa-tvr9-gqdw"},{"vulnerability":"VCID-ds36-fjg3-jbg7"},{"vulnerability":"VCID-pqcy-hw6d-mbh1"},{"vulnerability":"VCID-u6pz-tfzh-x7g2"},{"vulnerability":"VCID-ufgy-vx3n-gkca"},{"vulnerability":"VCID-urch-z19w-sqft"},{"vulnerability":"VCID-xtyq-k8n7-hkby"},{"vulnerability":"VCID-zgxp-d9xm-8fhm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.5.0-sun@1.5.0.15-1jpp.2%3Farch=el5"},{"url":"http://public2.vulnerablecode.io/api/packages/129388?format=json","purl":"pkg:rpm/redhat/java-1.5.0-sun@1.5.0.15-1jpp.2?arch=el4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1un4-qapq-sbf3"},{"vulnerability":"VCID-87wm-5t49-cqgz"},{"vulnerability":"VCID-8h6v-tdt7-kbf8"},{"vulnerability":"VCID-d9fa-tvr9-gqdw"},{"vulnerability":"VCID-ds36-fjg3-jbg7"},{"vulnerability":"VCID-pqcy-hw6d-mbh1"},{"vulnerability":"VCID-u6pz-tfzh-x7g2"},{"vulnerability":"VCID-ufgy-vx3n-gkca"},{"vulnerability":"VCID-urch-z19w-sqft"},{"vulnerability":"VCID-xtyq-k8n7-hkby"},{"vulnerability":"VCID-zgxp-d9xm-8fhm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.5.0-sun@1.5.0.15-1jpp.2%3Farch=el4"},{"url":"http://public2.vulnerablecode.io/api/packages/129395?format=json","purl":"pkg:rpm/redhat/java-1.6.0-bea@1:1.6.0.03-1jpp.2?arch=el5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-87wm-5t49-cqgz"},{"vulnerability":"VCID-k8g9-3j8n-2bht"},{"vulnerability":"VCID-u6pz-tfzh-x7g2"},{"vulnerability":"VCID-zgxp-d9xm-8fhm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-bea@1:1.6.0.03-1jpp.2%3Farch=el5"},{"url":"http://public2.vulnerablecode.io/api/packages/129396?format=json","purl":"pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.1-1jpp.2?arch=el5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1un4-qapq-sbf3"},{"vulnerability":"VCID-87wm-5t49-cqgz"},{"vulnerability":"VCID-8h6v-tdt7-kbf8"},{"vulnerability":"VCID-d9fa-tvr9-gqdw"},{"vulnerability":"VCID-ds36-fjg3-jbg7"},{"vulnerability":"VCID-mkw7-1yhv-vufw"},{"vulnerability":"VCID-pqcy-hw6d-mbh1"},{"vulnerability":"VCID-u6pz-tfzh-x7g2"},{"vulnerability":"VCID-urch-z19w-sqft"},{"vulnerability":"VCID-zgxp-d9xm-8fhm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.1-1jpp.2%3Farch=el5"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1193.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1193.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1193","reference_id":"","reference_type":"","scores":[{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.9715","published_at":"2026-04-01T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97157","published_at":"2026-04-02T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97162","published_at":"2026-04-04T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97163","published_at":"2026-04-07T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97173","published_at":"2026-04-08T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97174","published_at":"2026-04-09T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97178","published_at":"2026-04-12T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97179","published_at":"2026-04-13T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97187","published_at":"2026-04-16T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97189","published_at":"2026-04-18T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97193","published_at":"2026-04-24T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97195","published_at":"2026-04-26T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97196","published_at":"2026-04-29T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97201","published_at":"2026-05-05T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97206","published_at":"2026-05-07T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97211","published_at":"2026-05-09T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97216","published_at":"2026-05-11T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97221","published_at":"2026-05-12T12:55:00Z"},{"value":"0.37381","scoring_system":"epss","scoring_elements":"0.97228","published_at":"2026-05-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1193"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=436296","reference_id":"436296","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=436296"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/31343.txt","reference_id":"CVE-2008-1193;OSVDB-42598","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/31343.txt"},{"reference_url":"https://www.securityfocus.com/bid/28125/info","reference_id":"CVE-2008-1193;OSVDB-42598","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/28125/info"},{"reference_url":"https://security.gentoo.org/glsa/200804-20","reference_id":"GLSA-200804-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200804-20"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0186","reference_id":"RHSA-2008:0186","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0186"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0210","reference_id":"RHSA-2008:0210","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0210"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0244","reference_id":"RHSA-2008:0244","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0244"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0245","reference_id":"RHSA-2008:0245","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0245"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0267","reference_id":"RHSA-2008:0267","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0267"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0638","reference_id":"RHSA-2008:0638","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0638"}],"weaknesses":[],"exploits":[{"date_added":"2008-03-06","description":"Sun Java Runtime Environment 1.x - Image Parsing Heap Buffer Overflow","required_action":null,"due_date":null,"notes":null,"known_ransomware_campaign_use":true,"source_date_published":"2008-03-06","exploit_type":"dos","platform":"multiple","source_date_updated":"2014-02-05","data_source":"Exploit-DB","source_url":"https://www.securityfocus.com/bid/28125/info"}],"severity_range_score":null,"exploitability":"2.0","weighted_severity":"0.3","risk_score":0.6,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zgxp-d9xm-8fhm"}