{"id":"ECHO-e231-2b20-a715","modified":"2026-07-09T15:30:04.276890495Z","published":"2026-06-22T09:56:09.530Z","upstream":["CVE-2026-56409"],"references":[{"type":"WEB","url":"https://advisory.echohq.com/cve/CVE-2026-56409"}],"affected":[{"package":{"name":"expat","ecosystem":"Echo","purl":"pkg:deb/echo/expat"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.8.2-1"}]}],"database_specific":{"source":"https://advisory.echohq.com/osv/ECHO-e231-2b20-a715.json"}}],"schema_version":"1.7.5"}