{"id":"ECHO-3af7-0bd3-2a49","upstream":["CVE-2026-32778"],"severity":[],"modified":"2026-03-17T13:46:36.148Z","affected":[{"package":{"ecosystem":"Echo","name":"expat"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.7.4-1+e2"}]}]}],"references":[{"type":"WEB","url":"https://advisory.echohq.com/cve/CVE-2026-32778"},{"type":"WEB","url":"https://www.cve.org/CVERecord?id=CVE-2026-32778"}]}