Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-xdfe-jqzv-rbb4
Vulnerability ID VCID-xdfe-jqzv-rbb4
Aliases CVE-2009-2663
Summary A processing error in libvorbis might result in the execution of arbitrary code or a Denial of Service.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.02221 https://api.first.org/data/v1/epss?cve=CVE-2009-2663
epss 0.02221 https://api.first.org/data/v1/epss?cve=CVE-2009-2663
epss 0.02221 https://api.first.org/data/v1/epss?cve=CVE-2009-2663
epss 0.02221 https://api.first.org/data/v1/epss?cve=CVE-2009-2663
epss 0.02221 https://api.first.org/data/v1/epss?cve=CVE-2009-2663
epss 0.02221 https://api.first.org/data/v1/epss?cve=CVE-2009-2663
epss 0.02221 https://api.first.org/data/v1/epss?cve=CVE-2009-2663
epss 0.02221 https://api.first.org/data/v1/epss?cve=CVE-2009-2663
epss 0.02221 https://api.first.org/data/v1/epss?cve=CVE-2009-2663
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2009-45
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2009-63
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2663.json
https://api.first.org/data/v1/epss?cve=CVE-2009-2663
516259 https://bugzilla.redhat.com/show_bug.cgi?id=516259
540958 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=540958
669196 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=669196
CVE-2009-2663 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2663
GLSA-200909-02 https://security.gentoo.org/glsa/200909-02
mfsa2009-45 https://www.mozilla.org/en-US/security/advisories/mfsa2009-45
mfsa2009-63 https://www.mozilla.org/en-US/security/advisories/mfsa2009-63
RHSA-2009:1219 https://access.redhat.com/errata/RHSA-2009:1219
USN-825-1 https://usn.ubuntu.com/825-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.84425
EPSS Score 0.02221
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:12:01.287575+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/200909-02 38.0.0