VulnerableCode Vulnerability Details

Search for vulnerabilities

Vulnerability details: VCID-p6v5-kp1h-rbek

Essentials
Severities (27)
References (5)
Severity details (1)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-p6v5-kp1h-rbek
Aliases	CVE-2016-3190
Summary	cairo: out of bounds read in fill_xrgb32_lerp_opaque_spans
Status	Published
Exploitability	0.5
Weighted Severity	2.1
Risk	1.1
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-839	Numeric Range Comparison Without Minimum Check
CWE-125	Out-of-bounds Read
CWE-787	Out-of-bounds Write

System	Score	Found at
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
epss	0.0066	https://api.first.org/data/v1/epss?cve=CVE-2016-3190
cvssv2	4.3	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3190.json
		https://api.first.org/data/v1/epss?cve=CVE-2016-3190
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3190
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1318977		https://bugzilla.redhat.com/show_bug.cgi?id=1318977

No exploits are available.

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Exploit Prediction Scoring System (EPSS)

Percentile	0.70179
EPSS Score	0.0066
Published At	July 30, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T11:01:08.338613+00:00	RedHat Importer	Import	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3190.json	37.0.0