{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/88610?format=json","vulnerability_id":"VCID-zejr-2fgr-hydx","summary":"pcre incorrect memory requirement computation","aliases":[{"alias":"CVE-2005-4872"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/934558?format=json","purl":"pkg:deb/debian/pcre3@6.2-1?distro=bullseye","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcre3@6.2-1%3Fdistro=bullseye"},{"url":"http://public2.vulnerablecode.io/api/packages/1050701?format=json","purl":"pkg:deb/debian/pcre3@6.7-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1rdp-4637-tfh7"},{"vulnerability":"VCID-1z8y-cqmn-s7gc"},{"vulnerability":"VCID-2dcv-wbjk-tqh8"},{"vulnerability":"VCID-3a9g-pj5j-nbbc"},{"vulnerability":"VCID-3vg3-y6dk-n3ag"},{"vulnerability":"VCID-3wxw-5hsh-tqhj"},{"vulnerability":"VCID-4kzr-datq-bbcp"},{"vulnerability":"VCID-52he-28zb-z7bj"},{"vulnerability":"VCID-5vhs-7ffz-rkaf"},{"vulnerability":"VCID-6dhr-bpqk-gfds"},{"vulnerability":"VCID-7386-q1qx-2fgr"},{"vulnerability":"VCID-79s2-s1sx-3uag"},{"vulnerability":"VCID-7ufs-uvgd-v3ht"},{"vulnerability":"VCID-7vb2-byp7-uyb3"},{"vulnerability":"VCID-89gs-mhbc-dyda"},{"vulnerability":"VCID-a952-adu8-8qfx"},{"vulnerability":"VCID-bz2h-8zx3-fffy"},{"vulnerability":"VCID-cbu7-jb3m-nbf2"},{"vulnerability":"VCID-cs49-wfxj-j3ba"},{"vulnerability":"VCID-dfts-4w3d-huc3"},{"vulnerability":"VCID-dqaf-8bt4-e7b2"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-jkr1-gvjw-wkcx"},{"vulnerability":"VCID-kwfj-9bb2-dqcb"},{"vulnerability":"VCID-m72x-pqy7-myg3"},{"vulnerability":"VCID-mfmv-rw7p-rqbe"},{"vulnerability":"VCID-mha6-j74w-wudp"},{"vulnerability":"VCID-mnr6-xgc9-xucz"},{"vulnerability":"VCID-mq83-9qaf-ffgc"},{"vulnerability":"VCID-pejf-33ba-h3c1"},{"vulnerability":"VCID-sy5p-ju6m-vbgp"},{"vulnerability":"VCID-tx1n-v7bn-7uhw"},{"vulnerability":"VCID-udse-25e2-vfeb"},{"vulnerability":"VCID-va26-j6rt-buab"},{"vulnerability":"VCID-vjaf-nq1r-e3bm"},{"vulnerability":"VCID-vrjs-v8f3-s3d7"},{"vulnerability":"VCID-wx7q-7bp6-bybq"},{"vulnerability":"VCID-xwr2-6zpb-x7cn"},{"vulnerability":"VCID-ywee-ghvk-pubu"},{"vulnerability":"VCID-yztb-bavc-kkgt"},{"vulnerability":"VCID-zjgd-f5nj-zybz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcre3@6.7-1"},{"url":"http://public2.vulnerablecode.io/api/packages/934557?format=json","purl":"pkg:deb/debian/pcre3@2:8.39-13?distro=bullseye","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcre3@2:8.39-13%3Fdistro=bullseye"},{"url":"http://public2.vulnerablecode.io/api/packages/934555?format=json","purl":"pkg:deb/debian/pcre3@2:8.39-15?distro=bullseye","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcre3@2:8.39-15%3Fdistro=bullseye"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1050699?format=json","purl":"pkg:deb/debian/pcre3@3.4-1.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1rdp-4637-tfh7"},{"vulnerability":"VCID-1z8y-cqmn-s7gc"},{"vulnerability":"VCID-2dcv-wbjk-tqh8"},{"vulnerability":"VCID-3a9g-pj5j-nbbc"},{"vulnerability":"VCID-3vg3-y6dk-n3ag"},{"vulnerability":"VCID-3wxw-5hsh-tqhj"},{"vulnerability":"VCID-4kzr-datq-bbcp"},{"vulnerability":"VCID-52he-28zb-z7bj"},{"vulnerability":"VCID-5vhs-7ffz-rkaf"},{"vulnerability":"VCID-6dhr-bpqk-gfds"},{"vulnerability":"VCID-7386-q1qx-2fgr"},{"vulnerability":"VCID-79s2-s1sx-3uag"},{"vulnerability":"VCID-7ufs-uvgd-v3ht"},{"vulnerability":"VCID-7vb2-byp7-uyb3"},{"vulnerability":"VCID-89gs-mhbc-dyda"},{"vulnerability":"VCID-a952-adu8-8qfx"},{"vulnerability":"VCID-aunn-rnwm-1fhe"},{"vulnerability":"VCID-bz2h-8zx3-fffy"},{"vulnerability":"VCID-cbu7-jb3m-nbf2"},{"vulnerability":"VCID-cs49-wfxj-j3ba"},{"vulnerability":"VCID-dfts-4w3d-huc3"},{"vulnerability":"VCID-dqaf-8bt4-e7b2"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-jkr1-gvjw-wkcx"},{"vulnerability":"VCID-kwfj-9bb2-dqcb"},{"vulnerability":"VCID-m72x-pqy7-myg3"},{"vulnerability":"VCID-mfmv-rw7p-rqbe"},{"vulnerability":"VCID-mha6-j74w-wudp"},{"vulnerability":"VCID-mnr6-xgc9-xucz"},{"vulnerability":"VCID-mq83-9qaf-ffgc"},{"vulnerability":"VCID-pejf-33ba-h3c1"},{"vulnerability":"VCID-rdk3-3cmd-vkbg"},{"vulnerability":"VCID-sue7-e3bs-tuep"},{"vulnerability":"VCID-sy5p-ju6m-vbgp"},{"vulnerability":"VCID-tx1n-v7bn-7uhw"},{"vulnerability":"VCID-udse-25e2-vfeb"},{"vulnerability":"VCID-v2g6-h93b-euer"},{"vulnerability":"VCID-va26-j6rt-buab"},{"vulnerability":"VCID-vjaf-nq1r-e3bm"},{"vulnerability":"VCID-vrjs-v8f3-s3d7"},{"vulnerability":"VCID-wj2d-k1ha-pqgd"},{"vulnerability":"VCID-wx7q-7bp6-bybq"},{"vulnerability":"VCID-xwr2-6zpb-x7cn"},{"vulnerability":"VCID-ywee-ghvk-pubu"},{"vulnerability":"VCID-yztb-bavc-kkgt"},{"vulnerability":"VCID-zejr-2fgr-hydx"},{"vulnerability":"VCID-zjgd-f5nj-zybz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcre3@3.4-1.1"},{"url":"http://public2.vulnerablecode.io/api/packages/1050700?format=json","purl":"pkg:deb/debian/pcre3@4.5%2B7.4-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1rdp-4637-tfh7"},{"vulnerability":"VCID-1z8y-cqmn-s7gc"},{"vulnerability":"VCID-2dcv-wbjk-tqh8"},{"vulnerability":"VCID-3a9g-pj5j-nbbc"},{"vulnerability":"VCID-3vg3-y6dk-n3ag"},{"vulnerability":"VCID-3wxw-5hsh-tqhj"},{"vulnerability":"VCID-4kzr-datq-bbcp"},{"vulnerability":"VCID-52he-28zb-z7bj"},{"vulnerability":"VCID-5vhs-7ffz-rkaf"},{"vulnerability":"VCID-6dhr-bpqk-gfds"},{"vulnerability":"VCID-7386-q1qx-2fgr"},{"vulnerability":"VCID-79s2-s1sx-3uag"},{"vulnerability":"VCID-7ufs-uvgd-v3ht"},{"vulnerability":"VCID-7vb2-byp7-uyb3"},{"vulnerability":"VCID-89gs-mhbc-dyda"},{"vulnerability":"VCID-a952-adu8-8qfx"},{"vulnerability":"VCID-aunn-rnwm-1fhe"},{"vulnerability":"VCID-bz2h-8zx3-fffy"},{"vulnerability":"VCID-cbu7-jb3m-nbf2"},{"vulnerability":"VCID-cs49-wfxj-j3ba"},{"vulnerability":"VCID-dfts-4w3d-huc3"},{"vulnerability":"VCID-dqaf-8bt4-e7b2"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-jkr1-gvjw-wkcx"},{"vulnerability":"VCID-kwfj-9bb2-dqcb"},{"vulnerability":"VCID-m72x-pqy7-myg3"},{"vulnerability":"VCID-mfmv-rw7p-rqbe"},{"vulnerability":"VCID-mha6-j74w-wudp"},{"vulnerability":"VCID-mnr6-xgc9-xucz"},{"vulnerability":"VCID-mq83-9qaf-ffgc"},{"vulnerability":"VCID-pejf-33ba-h3c1"},{"vulnerability":"VCID-rdk3-3cmd-vkbg"},{"vulnerability":"VCID-sue7-e3bs-tuep"},{"vulnerability":"VCID-sy5p-ju6m-vbgp"},{"vulnerability":"VCID-tx1n-v7bn-7uhw"},{"vulnerability":"VCID-udse-25e2-vfeb"},{"vulnerability":"VCID-v2g6-h93b-euer"},{"vulnerability":"VCID-va26-j6rt-buab"},{"vulnerability":"VCID-vjaf-nq1r-e3bm"},{"vulnerability":"VCID-vrjs-v8f3-s3d7"},{"vulnerability":"VCID-wj2d-k1ha-pqgd"},{"vulnerability":"VCID-wx7q-7bp6-bybq"},{"vulnerability":"VCID-xwr2-6zpb-x7cn"},{"vulnerability":"VCID-ywee-ghvk-pubu"},{"vulnerability":"VCID-yztb-bavc-kkgt"},{"vulnerability":"VCID-zejr-2fgr-hydx"},{"vulnerability":"VCID-zjgd-f5nj-zybz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pcre3@4.5%252B7.4-2"},{"url":"http://public2.vulnerablecode.io/api/packages/129588?format=json","purl":"pkg:rpm/redhat/pcre@4.5-4.el4_5?arch=4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-rdk3-3cmd-vkbg"},{"vulnerability":"VCID-zejr-2fgr-hydx"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pcre@4.5-4.el4_5%3Farch=4"},{"url":"http://public2.vulnerablecode.io/api/packages/129587?format=json","purl":"pkg:rpm/redhat/pcre@6.6-2.el5_1?arch=1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-rdk3-3cmd-vkbg"},{"vulnerability":"VCID-zejr-2fgr-hydx"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pcre@6.6-2.el5_1%3Farch=1"}],"references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html","reference_id":"","reference_type":"","scores":[],"url":"http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-4872.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-4872.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-4872","reference_id":"","reference_type":"","scores":[{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81212","published_at":"2026-05-14T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.80961","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.8097","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.80993","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.80992","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.8102","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81027","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81044","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81031","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81023","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81061","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81062","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.8106","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81083","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81091","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81099","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81112","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81134","published_at":"2026-05-07T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81156","published_at":"2026-05-09T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.81152","published_at":"2026-05-11T12:55:00Z"},{"value":"0.01485","scoring_system":"epss","scoring_elements":"0.8117","published_at":"2026-05-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-4872"},{"reference_url":"http://scary.beasts.org/security/CESA-2007-006.html","reference_id":"","reference_type":"","scores":[],"url":"http://scary.beasts.org/security/CESA-2007-006.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4872","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4872"},{"reference_url":"http://secunia.com/advisories/27582","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/27582"},{"reference_url":"http://secunia.com/advisories/27773","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/27773"},{"reference_url":"http://secunia.com/advisories/27869","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/27869"},{"reference_url":"http://secunia.com/advisories/28658","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/28658"},{"reference_url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11615","reference_id":"","reference_type":"","scores":[],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11615"},{"reference_url":"http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm","reference_id":"","reference_type":"","scores":[],"url":"http://support.avaya.com/elmodocs2/security/ASA-2007-493.htm"},{"reference_url":"http://www.mandriva.com/security/advisories?name=MDVSA-2008:030","reference_id":"","reference_type":"","scores":[],"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2008:030"},{"reference_url":"http://www.novell.com/linux/security/advisories/2007_62_pcre.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.novell.com/linux/security/advisories/2007_62_pcre.html"},{"reference_url":"http://www.pcre.org/changelog.txt","reference_id":"","reference_type":"","scores":[],"url":"http://www.pcre.org/changelog.txt"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2007-1052.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2007-1052.html"},{"reference_url":"http://www.securityfocus.com/bid/26462","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/26462"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=383361","reference_id":"383361","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=383361"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pcre:pcre:*:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:pcre:pcre:*:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pcre:pcre:*:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2005-4872","reference_id":"CVE-2005-4872","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:N/A:P"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2005-4872"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:1052","reference_id":"RHSA-2007:1052","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:1052"}],"weaknesses":[{"cwe_id":119,"name":"Improper Restriction of Operations within the Bounds of a Memory Buffer","description":"The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer."}],"exploits":[],"severity_range_score":"4.3 - 4.3","exploitability":"0.5","weighted_severity":"3.9","risk_score":1.9,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zejr-2fgr-hydx"}