{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/61087?format=json","vulnerability_id":"VCID-1hcm-ra92-gqhc","summary":"Bitlbee does not drop extra group privileges correctly in unix.c","aliases":[{"alias":"CVE-2012-1187"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/89271?format=json","purl":"pkg:deb/debian/bitlbee@3.0.4%2Bbzr855-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@3.0.4%252Bbzr855-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/513856?format=json","purl":"pkg:deb/debian/bitlbee@3.0.5-1.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-mrhn-g7gk-dqgg"},{"vulnerability":"VCID-q78p-fwvg-auhb"},{"vulnerability":"VCID-t9xw-vd3u-s7dc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@3.0.5-1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/89267?format=json","purl":"pkg:deb/debian/bitlbee@3.6-1.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@3.6-1.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/89265?format=json","purl":"pkg:deb/debian/bitlbee@3.6-1.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@3.6-1.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/89269?format=json","purl":"pkg:deb/debian/bitlbee@3.6-1.5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@3.6-1.5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/89268?format=json","purl":"pkg:deb/debian/bitlbee@3.6-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@3.6-4%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/513852?format=json","purl":"pkg:deb/debian/bitlbee@0.92-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1hcm-ra92-gqhc"},{"vulnerability":"VCID-6tub-az49-zfhr"},{"vulnerability":"VCID-mrhn-g7gk-dqgg"},{"vulnerability":"VCID-q78p-fwvg-auhb"},{"vulnerability":"VCID-t9xw-vd3u-s7dc"},{"vulnerability":"VCID-w3ku-mga2-7fcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@0.92-1"},{"url":"http://public2.vulnerablecode.io/api/packages/513853?format=json","purl":"pkg:deb/debian/bitlbee@1.0.3-1.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1hcm-ra92-gqhc"},{"vulnerability":"VCID-6tub-az49-zfhr"},{"vulnerability":"VCID-mrhn-g7gk-dqgg"},{"vulnerability":"VCID-q78p-fwvg-auhb"},{"vulnerability":"VCID-t9xw-vd3u-s7dc"},{"vulnerability":"VCID-w3ku-mga2-7fcs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@1.0.3-1.3"},{"url":"http://public2.vulnerablecode.io/api/packages/513854?format=json","purl":"pkg:deb/debian/bitlbee@1.2.3-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1hcm-ra92-gqhc"},{"vulnerability":"VCID-mrhn-g7gk-dqgg"},{"vulnerability":"VCID-q78p-fwvg-auhb"},{"vulnerability":"VCID-t9xw-vd3u-s7dc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@1.2.3-1"},{"url":"http://public2.vulnerablecode.io/api/packages/513855?format=json","purl":"pkg:deb/debian/bitlbee@1.2.8-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1hcm-ra92-gqhc"},{"vulnerability":"VCID-mrhn-g7gk-dqgg"},{"vulnerability":"VCID-q78p-fwvg-auhb"},{"vulnerability":"VCID-t9xw-vd3u-s7dc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/bitlbee@1.2.8-1"}],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1187","reference_id":"","reference_type":"","scores":[{"value":"0.00427","scoring_system":"epss","scoring_elements":"0.62746","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00427","scoring_system":"epss","scoring_elements":"0.6279","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00427","scoring_system":"epss","scoring_elements":"0.628","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00427","scoring_system":"epss","scoring_elements":"0.62776","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1187"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":"0.5","weighted_severity":"0.0","risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1hcm-ra92-gqhc"}