Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/1036934?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "type": "deb", "namespace": "debian", "name": "qemu", "version": "1:2.8+dfsg-6+deb9u9", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "1:10.0.2+ds-2+deb13u1~bpo12+1", "latest_non_vulnerable_version": "1:10.2.2+ds-1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31748?format=api", "vulnerability_id": "VCID-145f-vwpy-ukfg", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7039.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7039.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74514", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74519", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74546", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.7452", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74552", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74568", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.7459", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74571", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74563", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.746", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74607", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74599", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7039" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551", "reference_id": "1791551", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949084", "reference_id": "949084", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949084" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949085", "reference_id": "949085", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949085" }, { "reference_url": "https://security.gentoo.org/glsa/202005-02", "reference_id": "GLSA-202005-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0348", "reference_id": "RHSA-2020:0348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1116", "reference_id": "RHSA-2020:1116", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1116" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1150", "reference_id": "RHSA-2020:1150", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1150" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1261", "reference_id": "RHSA-2020:1261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1296", "reference_id": "RHSA-2020:1296", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1296" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1300", "reference_id": "RHSA-2020:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1344", "reference_id": "RHSA-2020:1344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1351", "reference_id": "RHSA-2020:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1352", "reference_id": "RHSA-2020:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1358", "reference_id": "RHSA-2020:1358", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1358" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1360", "reference_id": "RHSA-2020:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2730", "reference_id": "RHSA-2020:2730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2730" }, { "reference_url": "https://usn.ubuntu.com/4283-1/", "reference_id": "USN-4283-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4283-1/" }, { "reference_url": "https://usn.ubuntu.com/4632-1/", "reference_id": "USN-4632-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4632-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-7039" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-145f-vwpy-ukfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61632?format=api", "vulnerability_id": "VCID-14d3-jbv3-xbbe", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10761.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10761.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10761", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74672", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74675", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74701", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74676", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74708", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74723", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74746", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74725", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74716", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74753", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74761", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74751", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10761" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10761", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10761" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843707", "reference_id": "1843707", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843707" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-10761" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-14d3-jbv3-xbbe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56776?format=api", "vulnerability_id": "VCID-1erd-fd8p-hqch", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13672.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13672.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00668", "scoring_system": "epss", "scoring_elements": "0.71226", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73671", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.7367", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73679", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73586", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73609", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73582", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73618", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73631", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73653", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73635", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73626", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486560", "reference_id": "1486560", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486560" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873851", "reference_id": "873851", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873851" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2162", "reference_id": "RHSA-2018:2162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2162" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-13672" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1erd-fd8p-hqch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40980?format=api", "vulnerability_id": "VCID-1g7f-6q39-fyhx", "summary": "Multiple vulnerabilities have been found in libslirp, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3593.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3593.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3593", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05868", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05921", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05768", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05775", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.059", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05934", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05923", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05816", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05841", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05819", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.0581", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05804", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3593" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970487", "reference_id": "1970487", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970487" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989994", "reference_id": "989994", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989994" }, { "reference_url": "https://security.archlinux.org/ASA-202106-49", "reference_id": "ASA-202106-49", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-49" }, { "reference_url": "https://security.archlinux.org/AVG-2073", "reference_id": "AVG-2073", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2073" }, { "reference_url": "https://security.gentoo.org/glsa/202107-44", "reference_id": "GLSA-202107-44", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-44" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" }, { "reference_url": "https://usn.ubuntu.com/5009-2/", "reference_id": "USN-5009-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-2/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3593" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1g7f-6q39-fyhx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81711?format=api", "vulnerability_id": "VCID-28wt-9aqz-xqbg", "summary": "qemu: OOB read and write due to integer overflow in sm501_2d_operation() in hw/display/sm501.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12829.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12829.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.3059", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30726", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30774", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30649", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30682", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30686", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30641", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30596", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30622", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30604", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.3057", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1808510", "reference_id": "1808510", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1808510" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961451", "reference_id": "961451", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961451" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-12829" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-28wt-9aqz-xqbg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35420?format=api", "vulnerability_id": "VCID-29bt-r6ya-jfhu", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20263.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20263.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20263", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32842", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32971", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.33005", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32828", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32875", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32904", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32907", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3287", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32844", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32886", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32864", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20263" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20263", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20263" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1933668", "reference_id": "1933668", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1933668" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985083", "reference_id": "985083", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985083" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20263" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-29bt-r6ya-jfhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81402?format=api", "vulnerability_id": "VCID-29d8-uet3-syfh", "summary": "QEMU: heap buffer overflow in iscsi_aio_ioctl_cb() in block/iscsi.c may lead to information disclosure", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11947.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11947.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16404", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16586", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16649", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16449", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16535", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16589", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1657", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1653", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16471", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16412", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16433", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1647", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1912765", "reference_id": "1912765", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1912765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0648", "reference_id": "RHSA-2021:0648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-11947" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-29d8-uet3-syfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48343?format=api", "vulnerability_id": "VCID-2ywm-rb9g-x3fr", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could cause a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10028.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10028.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10028", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24979", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24887", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24918", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24911", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25057", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25096", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24871", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.2494", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24986", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24999", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24959", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24904", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10028" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10028", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10028" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:C" }, { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1406367", "reference_id": "1406367", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1406367" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=849798", "reference_id": "849798", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=849798" }, { "reference_url": "https://security.gentoo.org/glsa/201701-49", "reference_id": "GLSA-201701-49", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-49" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2016-10028" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "4.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2ywm-rb9g-x3fr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/43770?format=api", "vulnerability_id": "VCID-32jy-dr7t-2uas", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20815.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20815.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88157", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88166", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88182", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88188", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88208", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88214", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88224", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88217", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.8823", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88229", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1693101", "reference_id": "1693101", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1693101" }, { "reference_url": "https://security.gentoo.org/glsa/201904-25", "reference_id": "GLSA-201904-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201904-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1175", "reference_id": "RHSA-2019:1175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1667", "reference_id": "RHSA-2019:1667", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1723", "reference_id": "RHSA-2019:1723", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1723" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1743", "reference_id": "RHSA-2019:1743", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1743" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1881", "reference_id": "RHSA-2019:1881", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1881" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1968", "reference_id": "RHSA-2019:1968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2507", "reference_id": "RHSA-2019:2507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-20815" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-32jy-dr7t-2uas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62359?format=api", "vulnerability_id": "VCID-3ew5-8dfe-u3d8", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could lead to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1544.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1544.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1544", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19058", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19273", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19119", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19172", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19178", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19132", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19079", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19037", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19049", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19324", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19039", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1544" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034179", "reference_id": "1034179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034179" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180364", "reference_id": "2180364", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:10:20Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180364" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-1544", "reference_id": "CVE-2023-1544", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:10:20Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-1544" }, { "reference_url": "https://security.gentoo.org/glsa/202408-18", "reference_id": "GLSA-202408-18", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-18" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2023-03/msg00206.html", "reference_id": "msg00206.html", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:10:20Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2023-03/msg00206.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230511-0005/", "reference_id": "ntap-20230511-0005", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:10:20Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230511-0005/" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2023-1544" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3ew5-8dfe-u3d8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84025?format=api", "vulnerability_id": "VCID-3qwz-gg8s-2ugm", "summary": "QEMU: VGA: reachable assert failure during display update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13673.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13673.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13673", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55308", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55287", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55324", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55329", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.5526", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55284", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55265", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55316", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55327", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55305", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.72645", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13673" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13673", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13673" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486588", "reference_id": "1486588", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486588" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-13673" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3qwz-gg8s-2ugm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80642?format=api", "vulnerability_id": "VCID-3wee-2xay-r7bt", "summary": "QEMU: block: fdc: null pointer dereference may lead to guest crash", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20196.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20196.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20196", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11722", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11841", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11884", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11671", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11756", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11809", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11821", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11782", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11621", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1162", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11741", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20196" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20196", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20196" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1919210", "reference_id": "1919210", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1919210" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984453", "reference_id": "984453", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984453" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0325", "reference_id": "RHSA-2022:0325", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0325" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0397", "reference_id": "RHSA-2022:0397", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0397" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1759", "reference_id": "RHSA-2022:1759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1759" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20196" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3wee-2xay-r7bt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73370?format=api", "vulnerability_id": "VCID-4276-jfy3-h3ck", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10839.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10839.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81418", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81428", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81449", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81448", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81475", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81481", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81502", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.8149", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81483", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81519", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81521", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81522", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1581013", "reference_id": "1581013", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1581013" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910431", "reference_id": "910431", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-10839" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4276-jfy3-h3ck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84378?format=api", "vulnerability_id": "VCID-46n7-vgn3-nffj", "summary": "Qemu: scsi: megasas: null pointer dereference while processing megasas command", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9503.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9503.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9503", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21443", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21447", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21473", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21479", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21611", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21668", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21424", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21501", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.2156", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21571", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21533", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21478", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9503" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9503", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9503" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459477", "reference_id": "1459477", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459477" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865754", "reference_id": "865754", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865754" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9503" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-46n7-vgn3-nffj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78124?format=api", "vulnerability_id": "VCID-4848-dnv8-bqez", "summary": "QEMU: use-after-free in TCG accelerator can lead to local privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24165.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24165.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24165", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62414", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62472", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62504", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62471", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62523", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62539", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62558", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62546", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62565", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62571", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62552", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24165" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24165", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24165" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235745", "reference_id": "2235745", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235745" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-24165" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4848-dnv8-bqez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61633?format=api", "vulnerability_id": "VCID-4d66-e766-q7ch", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13253.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13253.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13253", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30378", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30408", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30453", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30261", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30321", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30355", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30358", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30314", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30266", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30281", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30263", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30219", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13253" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13253", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13253" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1838546", "reference_id": "1838546", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1838546" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961297", "reference_id": "961297", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961297" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13253" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4d66-e766-q7ch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4098?format=api", "vulnerability_id": "VCID-4s1w-v1qs-9uhp", "summary": "blkif responses leak backend stack data", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10911.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10911.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13709", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13778", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1373", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1364", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13637", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24165", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24017", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24064", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24081", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24002", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24126", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.23951", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9940", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9940" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10810", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10810" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7541", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7541" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7542", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7542" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7889", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7889" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9605", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9605" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:N/A:N" }, { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458870", "reference_id": "1458870", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458870" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869706", "reference_id": "869706", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869706" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" }, { "reference_url": "https://usn.ubuntu.com/3468-1/", "reference_id": "USN-3468-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3468-1/" }, { "reference_url": "https://usn.ubuntu.com/3468-2/", "reference_id": "USN-3468-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3468-2/" }, { "reference_url": "https://usn.ubuntu.com/3468-3/", "reference_id": "USN-3468-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3468-3/" }, { "reference_url": "https://usn.ubuntu.com/3469-1/", "reference_id": "USN-3469-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3469-1/" }, { "reference_url": "https://usn.ubuntu.com/3469-2/", "reference_id": "USN-3469-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3469-2/" }, { "reference_url": "https://usn.ubuntu.com/3470-1/", "reference_id": "USN-3470-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3470-1/" }, { "reference_url": "https://usn.ubuntu.com/3470-2/", "reference_id": "USN-3470-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3470-2/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-216.html", "reference_id": "XSA-216", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-216.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-10911", "XSA-216" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4s1w-v1qs-9uhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35416?format=api", "vulnerability_id": "VCID-4unz-8jyy-qfdc", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4206.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4206.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.36835", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.36992", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.37027", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.36855", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.36906", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.37047", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.37071", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.37081", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.36989", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.3702", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.37066", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036998", "reference_id": "2036998", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036998" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5002", "reference_id": "RHSA-2022:5002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5821", "reference_id": "RHSA-2022:5821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5821" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-4206" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4unz-8jyy-qfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83218?format=api", "vulnerability_id": "VCID-56ng-2tm1-5qhk", "summary": "QEMU: seccomp: blacklist is not applied to all threads", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15746.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15746.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15746", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16659", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16829", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16887", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16671", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16756", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1681", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16789", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16745", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16687", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16624", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16631", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1667", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15746" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1615637", "reference_id": "1615637", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1615637" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907500", "reference_id": "907500", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3267", "reference_id": "RHSA-2020:3267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3906", "reference_id": "RHSA-2020:3906", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3906" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3907", "reference_id": "RHSA-2020:3907", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3907" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-15746" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-56ng-2tm1-5qhk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81665?format=api", "vulnerability_id": "VCID-5t1d-ve8h-9ba1", "summary": "QEMU: division by zero in oss_write() in audio/ossaudio.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14415.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14415.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14415", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15427", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15467", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15537", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15337", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15424", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15474", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15435", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15396", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15331", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.1525", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15254", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15305", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14415" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14415", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14415" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1848117", "reference_id": "1848117", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1848117" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-14415" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5t1d-ve8h-9ba1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40979?format=api", "vulnerability_id": "VCID-5ur6-6ec3-p7bt", "summary": "Multiple vulnerabilities have been found in libslirp, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3592.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3592.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3592", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07106", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07062", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07068", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07056", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07047", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06987", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06972", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0703", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07174", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07219", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07198", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07054", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3592" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970484", "reference_id": "1970484", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970484" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989993", "reference_id": "989993", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989993" }, { "reference_url": "https://security.archlinux.org/ASA-202106-49", "reference_id": "ASA-202106-49", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-49" }, { "reference_url": "https://security.archlinux.org/AVG-2073", "reference_id": "AVG-2073", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2073" }, { "reference_url": "https://security.gentoo.org/glsa/202107-44", "reference_id": "GLSA-202107-44", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-44" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" }, { "reference_url": "https://usn.ubuntu.com/5009-2/", "reference_id": "USN-5009-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-2/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3592" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5ur6-6ec3-p7bt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73618?format=api", "vulnerability_id": "VCID-5xgg-2mh6-gfg1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16872.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16872.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.5076", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50816", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50842", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50799", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50856", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50854", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50895", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50873", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50857", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50901", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.5088", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1656114", "reference_id": "1656114", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1656114" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916397", "reference_id": "916397", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916397" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-16872" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5xgg-2mh6-gfg1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61635?format=api", "vulnerability_id": "VCID-6ef4-c38a-j7ca", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13362.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27014", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2705", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26841", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26909", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26956", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2696", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26916", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26859", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26871", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26842", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26803", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840999", "reference_id": "1840999", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840999" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961887", "reference_id": "961887", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961887" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13362" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ef4-c38a-j7ca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80756?format=api", "vulnerability_id": "VCID-6fs3-3a9w-xycq", "summary": "QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29130.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29130.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29130", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64386", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64508", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64504", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64516", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.6444", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64471", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.6443", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64477", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64494", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64509", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64498", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64469", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29130" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29130", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29130" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902231", "reference_id": "1902231", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902231" }, { "reference_url": "https://security.archlinux.org/ASA-202012-7", "reference_id": "ASA-202012-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-7" }, { "reference_url": "https://security.archlinux.org/AVG-1305", "reference_id": "AVG-1305", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-29130" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6fs3-3a9w-xycq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61634?format=api", "vulnerability_id": "VCID-6hqu-ecs5-zqeb", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13361.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13361.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27014", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2705", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26841", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26909", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26956", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2696", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26916", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26859", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26871", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26842", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26803", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840980", "reference_id": "1840980", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840980" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961888", "reference_id": "961888", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961888" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13361" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6hqu-ecs5-zqeb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40982?format=api", "vulnerability_id": "VCID-6pkj-axqp-duf1", "summary": "Multiple vulnerabilities have been found in libslirp, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06142", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06209", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06051", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0606", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06179", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0621", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06192", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0607", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06109", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06099", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06094", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06086", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3595" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970489", "reference_id": "1970489", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970489" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989996", "reference_id": "989996", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989996" }, { "reference_url": "https://security.archlinux.org/ASA-202106-49", "reference_id": "ASA-202106-49", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-49" }, { "reference_url": "https://security.archlinux.org/AVG-2073", "reference_id": "AVG-2073", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2073" }, { "reference_url": "https://security.gentoo.org/glsa/202107-44", "reference_id": "GLSA-202107-44", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-44" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" }, { "reference_url": "https://usn.ubuntu.com/5009-2/", "reference_id": "USN-5009-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-2/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3595" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6pkj-axqp-duf1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78336?format=api", "vulnerability_id": "VCID-6xcc-y2jp-nufx", "summary": "QEMU: net: triggerable assertion due to race condition in hot-unplug", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3301.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3301.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3301", "reference_id": "", "reference_type": "", "scores": [ { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00322", "published_at": "2026-04-21T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.0034", "published_at": "2026-04-02T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00304", "published_at": "2026-04-09T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00303", "published_at": "2026-04-12T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00302", "published_at": "2026-04-18T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00297", "published_at": "2026-04-16T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00339", "published_at": "2026-04-04T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.0033", "published_at": "2026-04-07T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00328", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3301" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3301", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3301" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215784", "reference_id": "2215784", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T17:39:47Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215784" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openstack:13", "reference_id": "cpe:/a:redhat:openstack:13", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openstack:13" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3301", "reference_id": "CVE-2023-3301", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T17:39:47Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-3301" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20231020-0008/", "reference_id": "ntap-20231020-0008", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T17:39:47Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20231020-0008/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6980", "reference_id": "RHSA-2023:6980", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6980" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2023-3301" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6xcc-y2jp-nufx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78311?format=api", "vulnerability_id": "VCID-7mhs-m1r3-n3ag", "summary": "QEMU: VNC: improper I/O watch removal in TLS handshake can lead to remote unauthenticated denial of service", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3354.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3354.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3354", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20812", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20736", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20727", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20721", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.2096", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20674", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20751", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.2083", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20788", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21359", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28986", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216478", "reference_id": "2216478", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216478" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5094", "reference_id": "RHSA-2023:5094", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5094" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5239", "reference_id": "RHSA-2023:5239", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5239" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5264", "reference_id": "RHSA-2023:5264", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5264" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5587", "reference_id": "RHSA-2023:5587", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5587" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5796", "reference_id": "RHSA-2023:5796", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5796" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6227", "reference_id": "RHSA-2023:6227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0404", "reference_id": "RHSA-2024:0404", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0404" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2023-3354" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7mhs-m1r3-n3ag" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35391?format=api", "vulnerability_id": "VCID-7w6v-ewcn-kkdz", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3416.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3416.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3416", "reference_id": "", "reference_type": "", "scores": [ { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00333", "published_at": "2026-04-01T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00338", "published_at": "2026-04-02T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00336", "published_at": "2026-04-04T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00328", "published_at": "2026-04-07T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00325", "published_at": "2026-04-11T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00326", "published_at": "2026-04-09T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00323", "published_at": "2026-04-12T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00322", "published_at": "2026-04-18T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00317", "published_at": "2026-04-16T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00343", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3416" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3416", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3416" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932827", "reference_id": "1932827", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932827" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984448", "reference_id": "984448", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984448" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3061", "reference_id": "RHSA-2021:3061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3061" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3703", "reference_id": "RHSA-2021:3703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3703" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3416" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7w6v-ewcn-kkdz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73621?format=api", "vulnerability_id": "VCID-7w8v-hby8-dya5", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17958.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17958.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75425", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75428", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7546", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7544", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75483", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75492", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75511", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7549", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7548", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75522", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75527", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75516", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636712", "reference_id": "1636712", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636712" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911499", "reference_id": "911499", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-17958" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7w8v-hby8-dya5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81243?format=api", "vulnerability_id": "VCID-7zkh-xs1s-guh6", "summary": "QEMU: slirp: networking out-of-bounds read information disclosure vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10756.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10756.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06903", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0684", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06833", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06826", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06768", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06759", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06797", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06835", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.06998", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07052", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07032", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.06894", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835986", "reference_id": "1835986", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835986" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3586", "reference_id": "RHSA-2020:3586", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3586" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4059", "reference_id": "RHSA-2020:4059", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4059" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4694", "reference_id": "RHSA-2020:4694", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4694" }, { "reference_url": "https://usn.ubuntu.com/4437-1/", "reference_id": "USN-4437-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4437-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-10756" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7zkh-xs1s-guh6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81447?format=api", "vulnerability_id": "VCID-8cnu-b5en-7ye3", "summary": "qemu: integer overflow in ati_2d_blt() in hw/display/ati-2d.c could lead to DoS", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11869.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11869.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11869", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26016", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.261", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.2614", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25974", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26026", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26036", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25991", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25932", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25937", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25918", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25889", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11869" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809955", "reference_id": "1809955", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809955" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-11869" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8cnu-b5en-7ye3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82268?format=api", "vulnerability_id": "VCID-8jjd-u5mc-zbde", "summary": "qemu: scsi: lsi: potential infinite loop when executing script in lsi_execute_script", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12068.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12068.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24813", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24719", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24737", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24749", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24742", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24892", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24931", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24706", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24773", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.2482", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24833", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24794", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=de594e47659029316bbf9391efb79da0a1a08e08", "reference_id": "", "reference_type": "", "scores": [], "url": "https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=de594e47659029316bbf9391efb79da0a1a08e08" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html" }, { "reference_url": "https://security-tracker.debian.org/tracker/CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security-tracker.debian.org/tracker/CVE-2019-12068" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4665" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773749", "reference_id": "1773749", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773749" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.1\\+dfsg-12\\+deb8u6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:2.1\\+dfsg-12\\+deb8u6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.1\\+dfsg-12\\+deb8u6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.8\\+dfsg-6\\+deb9u8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:2.8\\+dfsg-6\\+deb9u8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.8\\+dfsg-6\\+deb9u8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\~deb10u1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\~deb10u1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\~deb10u1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\+deb10u2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\+deb10u2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\+deb10u2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:4.1-1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:4.1-1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:4.1-1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12068", "reference_id": "CVE-2019-12068", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12068" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-12068" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8jjd-u5mc-zbde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82101?format=api", "vulnerability_id": "VCID-8kzh-2gr5-e7gu", "summary": "QEMU: out-of-bounds read in ati_cursor_define() function in hw/display/ati.c leads to DoS", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20808.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20808.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20808", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31143", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.3127", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31312", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31131", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31184", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31215", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.3122", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31177", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31133", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31165", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31146", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31115", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20808" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20808", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20808" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1841136", "reference_id": "1841136", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1841136" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-20808" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8kzh-2gr5-e7gu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/74461?format=api", "vulnerability_id": "VCID-91y7-ceje-jbd3", "summary": "QEMU: Denial of Service via Improper Synchronization in QEMU NBD Server During Socket Closure", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7409.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7409.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7409", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82271", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82324", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82318", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82313", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82347", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82257", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82276", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82298", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82305", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0175", "scoring_system": "epss", "scoring_elements": "0.82598", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7409" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302487", "reference_id": "2302487", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302487" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el8", "reference_id": "cpe:/a:redhat:openshift:4.13::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9", "reference_id": "cpe:/a:redhat:openshift:4.13::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el8", "reference_id": "cpe:/a:redhat:openshift:4.14::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9", "reference_id": "cpe:/a:redhat:openshift:4.14::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el8", "reference_id": "cpe:/a:redhat:openshift:4.15::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9", "reference_id": "cpe:/a:redhat:openshift:4.15::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9", "reference_id": "cpe:/a:redhat:openshift:4.16::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9", "reference_id": "cpe:/a:redhat:openshift:4.17::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-7409", "reference_id": "CVE-2024-7409", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-7409" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:10518", "reference_id": "RHSA-2024:10518", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:10518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:10528", "reference_id": "RHSA-2024:10528", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:10528" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:6811", "reference_id": "RHSA-2024:6811", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:6811" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:6964", "reference_id": "RHSA-2024:6964", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:6964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:7408", "reference_id": "RHSA-2024:7408", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:7408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9136", "reference_id": "RHSA-2024:9136", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9136" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9912", "reference_id": "RHSA-2024:9912", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9912" }, { "reference_url": "https://usn.ubuntu.com/7744-1/", "reference_id": "USN-7744-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7744-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2024-7409" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-91y7-ceje-jbd3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81125?format=api", "vulnerability_id": "VCID-93gr-c812-uud8", "summary": "QEMU: sdhci: out-of-bounds access issue while doing multi block SDMA", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25085.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25085.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25085", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.3636", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36534", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36567", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36405", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36457", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36477", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36484", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36449", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36427", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36468", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36451", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36395", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25085" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25085", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25085" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879671", "reference_id": "1879671", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879671" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970540", "reference_id": "970540", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970540" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25085" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-93gr-c812-uud8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80846?format=api", "vulnerability_id": "VCID-955d-q41q-4uau", "summary": "QEMU: net: an assert failure via eth_get_gso_type", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27617.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27617.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27617", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45648", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45715", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45735", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45684", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45739", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45758", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45728", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45736", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45786", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.4578", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45727", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27617" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891668", "reference_id": "1891668", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891668" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973324", "reference_id": "973324", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973324" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3061", "reference_id": "RHSA-2021:3061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3061" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-27617" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-955d-q41q-4uau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82949?format=api", "vulnerability_id": "VCID-9rpr-g2sm-yqb6", "summary": "QEMU: pvrdma: null dereference or excessive memory allocation when creating QP/CQ", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20125.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20125.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20125", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65869", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65981", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.6598", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65993", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.6591", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.6594", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65958", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.6597", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65988", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65974", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65945", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20125" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02823.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02823.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/19/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/19/3" }, { "reference_url": "http://www.securityfocus.com/bid/106298", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106298" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660747", "reference_id": "1660747", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660747" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20125", "reference_id": "CVE-2018-20125", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20125" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20125" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9rpr-g2sm-yqb6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63734?format=api", "vulnerability_id": "VCID-ac7j-emx5-v7cn", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9524.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9524.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84009", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.83986", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.83982", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84006", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84007", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88649", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88669", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88673", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88685", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88624", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88633", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88651", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9524" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1460170", "reference_id": "1460170", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1460170" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865755", "reference_id": "865755", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1681", "reference_id": "RHSA-2017:1681", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1681" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1682", "reference_id": "RHSA-2017:1682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1682" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9524" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ac7j-emx5-v7cn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35394?format=api", "vulnerability_id": "VCID-ap2r-g7ew-kqed", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3544.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3544.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09299", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.093", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09351", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09263", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09339", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09388", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09399", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0937", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09355", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09248", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09247", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958935", "reference_id": "1958935", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958935" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042", "reference_id": "989042", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3544" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ap2r-g7ew-kqed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69424?format=api", "vulnerability_id": "VCID-atzs-876n-byg6", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15268.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15268.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83833", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83803", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83798", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83832", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02569", "scoring_system": "epss", "scoring_elements": "0.85465", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87462", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87476", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87478", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87497", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87503", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87515", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15268" }, { "reference_url": "https://bugs.launchpad.net/qemu/+bug/1718964", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.launchpad.net/qemu/+bug/1718964" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02278.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02278.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.securityfocus.com/bid/101277", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/101277" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1496879", "reference_id": "1496879", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1496879" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880836", "reference_id": "880836", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880836" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15268", "reference_id": "CVE-2017-15268", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15268" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15268" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-atzs-876n-byg6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73640?format=api", "vulnerability_id": "VCID-b7v6-247j-kfcs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12155.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12155.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78415", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78421", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78452", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78436", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78462", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78467", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78492", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78474", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78495", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78494", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78491", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712670", "reference_id": "1712670", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712670" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929353", "reference_id": "929353", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2607", "reference_id": "RHSA-2019:2607", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3179", "reference_id": "RHSA-2019:3179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3345", "reference_id": "RHSA-2019:3345", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3345" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3742", "reference_id": "RHSA-2019:3742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3787", "reference_id": "RHSA-2019:3787", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3787" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:4344", "reference_id": "RHSA-2019:4344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:4344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1216", "reference_id": "RHSA-2020:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1216" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-12155" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b7v6-247j-kfcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63736?format=api", "vulnerability_id": "VCID-bbmg-x8h6-67e5", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11334.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11334.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09449", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09424", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09409", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09301", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09304", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10724", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.108", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10856", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10869", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10833", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10897", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12197", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471638", "reference_id": "1471638", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471638" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869173", "reference_id": "869173", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869173" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3369", "reference_id": "RHSA-2017:3369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-11334" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bbmg-x8h6-67e5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35392?format=api", "vulnerability_id": "VCID-bcps-uatt-wkd7", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3527.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3527.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3527", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07873", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0797", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08017", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07976", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08035", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08054", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08038", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08019", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08002", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07915", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07897", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08058", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3527" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3527", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3527" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1955695", "reference_id": "1955695", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1955695" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988157", "reference_id": "988157", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988157" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3527" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bcps-uatt-wkd7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82947?format=api", "vulnerability_id": "VCID-be1r-pq33-abg5", "summary": "QEMU: pvrdma: uar_read leads to NULL dereference", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20191.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20191.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20191", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.7251", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72601", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.726", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.7261", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72516", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72533", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72548", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72561", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72585", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72567", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72557", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20191" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20191", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20191" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg03066.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg03066.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/18/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/18/1" }, { "reference_url": "http://www.securityfocus.com/bid/106276", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106276" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660314", "reference_id": "1660314", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660314" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20191", "reference_id": "CVE-2018-20191", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20191" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20191" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-be1r-pq33-abg5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69422?format=api", "vulnerability_id": "VCID-bj4j-2yxz-pyeh", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15038.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15038.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08137", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08107", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08089", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07995", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07979", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16789", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16847", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16631", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16716", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1677", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1675", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16617", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:P/I:N/A:N" }, { "value": "3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg00729.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg00729.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/10/06/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/10/06/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1499110", "reference_id": "1499110", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1499110" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877890", "reference_id": "877890", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877890" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15038", "reference_id": "CVE-2017-15038", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:N/A:N" }, { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15038" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15038" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bj4j-2yxz-pyeh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35405?format=api", "vulnerability_id": "VCID-br4x-bpvj-puhr", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3608.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3608.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3608", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11095", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11238", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11302", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11117", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11197", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11253", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11263", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11174", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11149", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11015", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11025", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11155", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3608" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3608", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3608" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1973383", "reference_id": "1973383", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1973383" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990563", "reference_id": "990563", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990563" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3608" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-br4x-bpvj-puhr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82097?format=api", "vulnerability_id": "VCID-burb-pa38-fqhw", "summary": "QEMU: vnc: memory leakage upon disconnect", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20382.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20382.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13515", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13615", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13676", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13474", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13555", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13605", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13578", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1354", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13492", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13404", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.134", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13473", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810390", "reference_id": "1810390", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810390" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2774", "reference_id": "RHSA-2020:2774", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2774" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3267", "reference_id": "RHSA-2020:3267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3906", "reference_id": "RHSA-2020:3906", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3906" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3907", "reference_id": "RHSA-2020:3907", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3907" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4167", "reference_id": "RHSA-2020:4167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4167" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-20382" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-burb-pa38-fqhw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80862?format=api", "vulnerability_id": "VCID-c4ky-b4y8-kqd5", "summary": "QEMU: divide by zero in dwc2_handle_packet() in hw/usb/hcd-dwc2.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27661.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27661.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27661", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32437", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32582", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32618", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32441", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32489", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32517", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.3252", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32482", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32455", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32491", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32469", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27661" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27661", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27661" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890653", "reference_id": "1890653", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890653" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972864", "reference_id": "972864", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972864" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-27661" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c4ky-b4y8-kqd5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63621?format=api", "vulnerability_id": "VCID-c834-hdmj-cfe1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9374.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9374.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27706", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27533", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27744", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27575", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27643", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27685", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2769", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27589", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459132", "reference_id": "1459132", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459132" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864568", "reference_id": "864568", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864568" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9374" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c834-hdmj-cfe1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78760?format=api", "vulnerability_id": "VCID-cgq2-b6my-eucg", "summary": "QEMU: lsi53c895a: DMA reentrancy issue leads to stack overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0330.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0330.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0330", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08293", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08314", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08323", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08305", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08291", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08241", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08236", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08278", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09113", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.08981", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0896", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0330" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029155", "reference_id": "1029155", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029155" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2160151", "reference_id": "2160151", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T18:43:40Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2160151" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-0330", "reference_id": "CVE-2023-0330", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T18:43:40Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-0330" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00006.html", "reference_id": "msg00006.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T18:43:40Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00006.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2023-01/msg03411.html", "reference_id": "msg03411.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T18:43:40Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2023-01/msg03411.html" }, { "reference_url": "https://usn.ubuntu.com/6167-1/", "reference_id": "USN-6167-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6167-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2023-0330" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cgq2-b6my-eucg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63737?format=api", "vulnerability_id": "VCID-chjc-4r36-y3f8", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11434.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11434.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07871", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07843", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07829", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07743", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07718", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16423", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16307", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16371", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16353", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16178", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16361", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16221", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:C" }, { "value": "8.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472611", "reference_id": "1472611", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472611" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869171", "reference_id": "869171", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869171" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-11434" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-chjc-4r36-y3f8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83048?format=api", "vulnerability_id": "VCID-cmqc-g49c-wbeq", "summary": "Qemu: bt: Integer overflow in Bluetooth routines allows memory corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19665.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19665.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19665", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42799", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42869", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42896", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42835", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42885", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42898", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42886", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42929", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42917", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42855", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19665" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1607652", "reference_id": "1607652", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1607652" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916278", "reference_id": "916278", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916278" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-19665" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cmqc-g49c-wbeq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/76982?format=api", "vulnerability_id": "VCID-cnyg-wvxr-gqg3", "summary": "QEMU: sdhci: heap buffer overflow in sdhci_write_dataport()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-3447.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-3447.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-3447", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03161", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03104", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03129", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03091", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03067", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03055", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03032", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03041", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03085", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03098", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03099", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-3447" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3447", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3447" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068821", "reference_id": "1068821", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068821" }, { "reference_url": "https://patchew.org/QEMU/20240404085549.16987-1-philmd@linaro.org/", "reference_id": "20240404085549.16987-1-philmd@linaro.org", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T18:53:42Z/" } ], "url": "https://patchew.org/QEMU/20240404085549.16987-1-philmd@linaro.org/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274123", "reference_id": "2274123", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T18:53:42Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274123" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-3447", "reference_id": "CVE-2024-3447", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T18:53:42Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-3447" }, { "reference_url": "https://usn.ubuntu.com/7744-1/", "reference_id": "USN-7744-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7744-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2024-3447" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cnyg-wvxr-gqg3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73623?format=api", "vulnerability_id": "VCID-cy79-xgar-eqgr", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00004.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00004.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00028.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00028.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00043.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00043.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18849.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18849.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14459", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14357", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14453", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14395", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14288", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14522", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14592", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14402", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14488", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14542", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1449", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LQIBTGNRDQEXGAAYHE4JIWFAYFNHZ6QP/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LQIBTGNRDQEXGAAYHE4JIWFAYFNHZ6QP/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg06401.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg06401.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20190411-0006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20190411-0006/" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/11/01/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/11/01/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644973", "reference_id": "1644973", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644973" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912535", "reference_id": "912535", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912535" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18849", "reference_id": "CVE-2018-18849", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18849" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-18849" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cy79-xgar-eqgr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79249?format=api", "vulnerability_id": "VCID-d6gd-j7ks-xkgk", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15890.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15890.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.6869", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68787", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68756", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68798", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68808", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68709", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68727", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68705", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68757", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68776", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68799", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68785", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html" }, { "reference_url": "https://seclists.org/bugtraq/2020/Feb/0", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Feb/0" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4616" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/09/06/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/09/06/3" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716", "reference_id": "1749716", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939868", "reference_id": "939868", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939868" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939869", "reference_id": "939869", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939869" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890", "reference_id": "CVE-2019-15890", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0348", "reference_id": "RHSA-2020:0348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4676", "reference_id": "RHSA-2020:4676", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4676" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-15890" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d6gd-j7ks-xkgk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56778?format=api", "vulnerability_id": "VCID-d8cd-qgg7-fyed", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16845.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16845.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83891", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83985", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.8397", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83964", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.8396", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83984", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83905", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83921", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83924", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83948", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83954", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:N/A:N" }, { "value": "3.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.securityfocus.com/bid/101923", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/101923" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1514148", "reference_id": "1514148", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1514148" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882136", "reference_id": "882136", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16845", "reference_id": "CVE-2017-16845", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:N/A:P" }, { "value": "10.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16845" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" }, { "reference_url": "https://usn.ubuntu.com/3649-1/", "reference_id": "USN-3649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-16845" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d8cd-qgg7-fyed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73631?format=api", "vulnerability_id": "VCID-dgzy-z4ad-ubc4", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19489.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19489.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12168", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12285", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12332", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.1213", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12211", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12261", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12268", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.1223", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12193", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12081", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12083", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12196", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1653156", "reference_id": "1653156", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1653156" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914727", "reference_id": "914727", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914727" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-19489" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dgzy-z4ad-ubc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61637?format=api", "vulnerability_id": "VCID-dqbd-gqg9-2kgs", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13754.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13754.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08657", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08685", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08733", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08656", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08757", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08735", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0872", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0861", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08597", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08751", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842363", "reference_id": "1842363", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842363" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2521", "reference_id": "RHSA-2021:2521", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2521" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3061", "reference_id": "RHSA-2021:3061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3061" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13754" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dqbd-gqg9-2kgs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80609?format=api", "vulnerability_id": "VCID-drqf-646q-xqf3", "summary": "qemu: out-of-bound heap buffer access via an interrupt ID field", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20221.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20221.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20221", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0619", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06225", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06251", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06231", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06275", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06317", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06309", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06305", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06294", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06264", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06408", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20221" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20221", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20221" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924601", "reference_id": "1924601", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924601" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1125", "reference_id": "RHSA-2021:1125", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2521", "reference_id": "RHSA-2021:2521", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2521" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3061", "reference_id": "RHSA-2021:3061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3061" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20221" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-drqf-646q-xqf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82965?format=api", "vulnerability_id": "VCID-dthd-mp8z-8ucg", "summary": "QEMU: dev-mtp: path traversal in usb_mtp_write_data of the Media Transfer Protocol (MTP)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16867.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16867.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16867", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34167", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34506", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34534", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34402", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34444", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34473", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34475", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34436", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34412", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34447", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34434", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34394", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16867" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1654885", "reference_id": "1654885", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1654885" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=915884", "reference_id": "915884", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=915884" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-16867" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dthd-mp8z-8ucg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31746?format=api", "vulnerability_id": "VCID-e99n-gc79-cqcy", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11102.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11102.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11102", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60624", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60781", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60749", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60791", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60797", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60699", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60728", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60694", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60742", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60758", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60782", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60768", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11102" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11102" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2020-03/msg08322.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2020-03/msg08322.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2020/04/06/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2020/04/06/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1821180", "reference_id": "1821180", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1821180" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=956145", "reference_id": "956145", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=956145" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.2.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:4.2.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.2.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11102", "reference_id": "CVE-2020-11102", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11102" }, { "reference_url": "https://security.gentoo.org/glsa/202005-02", "reference_id": "GLSA-202005-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-02" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-11102" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e99n-gc79-cqcy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35407?format=api", "vulnerability_id": "VCID-eb18-wa2w-q7bn", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3682.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3682.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61708", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61782", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61813", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61831", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61847", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61868", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61857", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61837", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.6188", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61885", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61869", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989651", "reference_id": "1989651", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989651" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991911", "reference_id": "991911", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991911" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3703", "reference_id": "RHSA-2021:3703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3703" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3704", "reference_id": "RHSA-2021:3704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3704" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" }, { "reference_url": "https://usn.ubuntu.com/5772-1/", "reference_id": "USN-5772-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5772-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3682" ], "risk_score": 3.9, "exploitability": "0.5", "weighted_severity": "7.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eb18-wa2w-q7bn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63623?format=api", "vulnerability_id": "VCID-ecy5-s73b-n3db", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10664.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10664.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89863", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89856", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89849", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.9085", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.9086", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90871", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90882", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90889", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90898", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90844", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1466190", "reference_id": "1466190", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1466190" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866674", "reference_id": "866674", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866674" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2390", "reference_id": "RHSA-2017:2390", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2390" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2445", "reference_id": "RHSA-2017:2445", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2445" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-10664" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ecy5-s73b-n3db" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35402?format=api", "vulnerability_id": "VCID-een8-8kc5-qfcx", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3546.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3546.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13329", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13431", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13496", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.1329", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13373", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13423", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13395", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.1336", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13313", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13218", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13217", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13297", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958978", "reference_id": "1958978", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958978" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042", "reference_id": "989042", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3546" ], "risk_score": 3.7, "exploitability": "0.5", "weighted_severity": "7.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-een8-8kc5-qfcx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81469?format=api", "vulnerability_id": "VCID-egyg-bbm9-8qea", "summary": "QEMU: slirp: use-after-free in ip_reass() function in ip_input.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1983.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1983.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35317", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42301", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42273", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42323", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42299", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42307", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42315", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42338", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43052", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43111", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43138", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43077", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1983" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1829825", "reference_id": "1829825", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1829825" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3053", "reference_id": "RHSA-2020:3053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3053" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4079", "reference_id": "RHSA-2020:4079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4290", "reference_id": "RHSA-2020:4290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4676", "reference_id": "RHSA-2020:4676", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4676" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0346", "reference_id": "RHSA-2021:0346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0459", "reference_id": "RHSA-2021:0459", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0459" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0934", "reference_id": "RHSA-2021:0934", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0934" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-1983" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-egyg-bbm9-8qea" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80657?format=api", "vulnerability_id": "VCID-eqp6-raqc-dkch", "summary": "qemu: 9pfs: TOCTOU privilege escalation vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20181.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20181.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20181", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.1716", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17325", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17373", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17152", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17244", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17301", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17315", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17266", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17207", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17146", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17151", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17187", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20181" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927007", "reference_id": "1927007", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927007" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20181" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eqp6-raqc-dkch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34657?format=api", "vulnerability_id": "VCID-ewsp-7ydm-5ub3", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13164.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13164.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.0556", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05392", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05503", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05538", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05537", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05575", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05598", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05571", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05559", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05552", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05501", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05468", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1722559", "reference_id": "1722559", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1722559" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931351", "reference_id": "931351", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931351" }, { "reference_url": "https://security.gentoo.org/glsa/202003-66", "reference_id": "GLSA-202003-66", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-66" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-13164" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ewsp-7ydm-5ub3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61639?format=api", "vulnerability_id": "VCID-ezm8-pq4d-mkhg", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13800.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13800.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13800", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28466", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28561", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28604", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28407", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28474", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28515", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28517", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28425", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28442", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28419", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28368", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13800" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843771", "reference_id": "1843771", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843771" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13800" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ezm8-pq4d-mkhg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62353?format=api", "vulnerability_id": "VCID-f2fx-sqtp-8yhe", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could lead to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0216.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0216.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0216", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06028", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06061", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0609", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06073", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06114", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06152", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06144", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0614", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06132", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06093", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06104", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06254", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0216" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0216", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0216" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014590", "reference_id": "1014590", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014590" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036953", "reference_id": "2036953", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036953" }, { "reference_url": "https://security.gentoo.org/glsa/202408-18", "reference_id": "GLSA-202408-18", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-18" }, { "reference_url": "https://usn.ubuntu.com/5772-1/", "reference_id": "USN-5772-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5772-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-0216" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f2fx-sqtp-8yhe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78365?format=api", "vulnerability_id": "VCID-f4sq-73vu-sfdq", "summary": "QEMU: e1000e: heap use-after-free in e1000e_write_packet_to_guest()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3019.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3019.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3019", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01625", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.0152", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01536", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01537", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.0154", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01544", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01548", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01554", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01543", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01534", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3019" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3019", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3019" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041102", "reference_id": "1041102", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351", "reference_id": "2222351", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::crb", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3019", "reference_id": "CVE-2023-3019", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-3019" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0135", "reference_id": "RHSA-2024:0135", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0135" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0404", "reference_id": "RHSA-2024:0404", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0404" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0569", "reference_id": "RHSA-2024:0569", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0569" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2135", "reference_id": "RHSA-2024:2135", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2135" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2023-3019" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f4sq-73vu-sfdq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73373?format=api", "vulnerability_id": "VCID-f4w9-adpm-tuht", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17963.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17963.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81221", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81229", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81253", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81251", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81279", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81284", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81305", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81291", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81321", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81323", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81322", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636777", "reference_id": "1636777", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636777" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911469", "reference_id": "911469", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2166", "reference_id": "RHSA-2019:2166", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2166" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-17963" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f4w9-adpm-tuht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40981?format=api", "vulnerability_id": "VCID-ffd9-9wm1-rffs", "summary": "Multiple vulnerabilities have been found in libslirp, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3594.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3594.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3594", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0801", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07978", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0796", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07945", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07864", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0785", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07969", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07991", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08161", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08215", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08071", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3594" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970491", "reference_id": "1970491", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970491" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989995", "reference_id": "989995", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989995" }, { "reference_url": "https://security.archlinux.org/ASA-202106-49", "reference_id": "ASA-202106-49", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-49" }, { "reference_url": "https://security.archlinux.org/AVG-2073", "reference_id": "AVG-2073", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2073" }, { "reference_url": "https://security.gentoo.org/glsa/202107-44", "reference_id": "GLSA-202107-44", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-44" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" }, { "reference_url": "https://usn.ubuntu.com/5009-2/", "reference_id": "USN-5009-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-2/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3594" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ffd9-9wm1-rffs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69423?format=api", "vulnerability_id": "VCID-fp83-zgum-ryb8", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15119.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15119.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81351", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81455", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81452", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81453", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.8136", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81382", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.8138", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81409", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81413", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81435", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81422", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81415", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516925", "reference_id": "1516925", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516925" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883399", "reference_id": "883399", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883399" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15119" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fp83-zgum-ryb8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82951?format=api", "vulnerability_id": "VCID-fucx-q3j9-qkat", "summary": "QEMU: pvrdma: infinite loop in pvrdma_qp_send/recv", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20216.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20216.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20216", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65794", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65917", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65913", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65928", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65844", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65874", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65839", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65891", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65903", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65908", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65878", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20216" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20216", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20216" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg03052.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg03052.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/19/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/19/2" }, { "reference_url": "http://www.securityfocus.com/bid/106291", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106291" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660753", "reference_id": "1660753", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660753" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20216", "reference_id": "CVE-2018-20216", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20216" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20216" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fucx-q3j9-qkat" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56779?format=api", "vulnerability_id": "VCID-gmvy-m5mq-yycx", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17381.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17381.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40072", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40127", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40243", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40205", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40187", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40235", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.4022", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40245", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40167", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40231", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-12/msg00166.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-12/msg00166.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/12/05/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/12/05/2" }, { "reference_url": "http://www.securityfocus.com/bid/102059", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102059" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1520782", "reference_id": "1520782", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1520782" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883625", "reference_id": "883625", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883625" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc0:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc0:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc0:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17381", "reference_id": "CVE-2017-17381", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17381" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-17381" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gmvy-m5mq-yycx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73626?format=api", "vulnerability_id": "VCID-gntc-n53u-n3aj", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18954.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18954.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30839", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30966", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.31013", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30831", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30889", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30919", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30879", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30834", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30865", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30845", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.3081", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526029", "reference_id": "1526029", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526029" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914604", "reference_id": "914604", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914604" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-18954" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gntc-n53u-n3aj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34658?format=api", "vulnerability_id": "VCID-gqtx-g1cs-6ybn", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8608.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8608.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8608", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81079", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81088", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81113", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.8114", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81146", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81165", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81151", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81144", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81181", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81183", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8608" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8608", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8608" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453", "reference_id": "1798453", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453" }, { "reference_url": "https://security.gentoo.org/glsa/202003-66", "reference_id": "GLSA-202003-66", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-66" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1208", "reference_id": "RHSA-2020:1208", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1208" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1209", "reference_id": "RHSA-2020:1209", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1209" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1261", "reference_id": "RHSA-2020:1261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1292", "reference_id": "RHSA-2020:1292", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1292" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1300", "reference_id": "RHSA-2020:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1351", "reference_id": "RHSA-2020:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1352", "reference_id": "RHSA-2020:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1379", "reference_id": "RHSA-2020:1379", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1379" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1403", "reference_id": "RHSA-2020:1403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2730", "reference_id": "RHSA-2020:2730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2730" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2773", "reference_id": "RHSA-2020:2773", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2773" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2774", "reference_id": "RHSA-2020:2774", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2774" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2844", "reference_id": "RHSA-2020:2844", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2844" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3040", "reference_id": "RHSA-2020:3040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3040" }, { "reference_url": "https://usn.ubuntu.com/4283-1/", "reference_id": "USN-4283-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4283-1/" }, { "reference_url": "https://usn.ubuntu.com/4632-1/", "reference_id": "USN-4632-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4632-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-8608" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gqtx-g1cs-6ybn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/94148?format=api", "vulnerability_id": "VCID-h22r-c3az-3fa3", "summary": "An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSI_IOCTL_SEND_COMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 (the size of a sector). NOTE: a member of the QEMU security team disputes the significance of this issue because a \"privileged guest user has many ways to cause similar DoS effect, without triggering this assert.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20175", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67555", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67488", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67562", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67529", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67564", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67576", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67452", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67509", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67487", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67538", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67553", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67575", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20175" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20175" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg00597.html", "reference_id": "msg00597.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg00597.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg01651.html", "reference_id": "msg01651.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg01651.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg02165.html", "reference_id": "msg02165.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg02165.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg03869.html", "reference_id": "msg03869.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg03869.html" }, { "reference_url": "https://www.mail-archive.com/qemu-devel%40nongnu.org/msg667396.html", "reference_id": "msg667396.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://www.mail-archive.com/qemu-devel%40nongnu.org/msg667396.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-20175" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h22r-c3az-3fa3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81332?format=api", "vulnerability_id": "VCID-h5sc-3zrc-23dn", "summary": "QEMU: loader: OOB access while loading registered ROM may lead to code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13765.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13765.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58804", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58879", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58901", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58868", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.5892", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58926", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58943", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58907", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58941", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58945", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58923", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13765" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842912", "reference_id": "1842912", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842912" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0347", "reference_id": "RHSA-2021:0347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0347" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13765" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h5sc-3zrc-23dn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80849?format=api", "vulnerability_id": "VCID-hq1b-c1ew-kkga", "summary": "QEMU: ati-vga: potential crash via invalid x y parameter values", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27616.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27616.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27616", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63006", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63065", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63094", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63059", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63111", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63128", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63145", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.6313", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63108", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63143", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63151", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63131", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27616" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1894036", "reference_id": "1894036", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1894036" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975265", "reference_id": "975265", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975265" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-27616" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hq1b-c1ew-kkga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35404?format=api", "vulnerability_id": "VCID-hrhp-htnd-7bbx", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3607.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3607.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3607", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38532", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38667", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38691", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38622", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38673", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38682", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38692", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38654", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38628", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38675", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38653", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38575", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3607" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3607", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3607" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1973349", "reference_id": "1973349", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1973349" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990564", "reference_id": "990564", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990564" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3607" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hrhp-htnd-7bbx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73629?format=api", "vulnerability_id": "VCID-hwt1-11ew-sqhv", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19364.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19364.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22557", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2273", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22774", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22564", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2264", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22692", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22709", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2267", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22612", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22627", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22624", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22576", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1643252", "reference_id": "1643252", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1643252" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914599", "reference_id": "914599", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914599" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-19364" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hwt1-11ew-sqhv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82802?format=api", "vulnerability_id": "VCID-j11x-bba3-zkdj", "summary": "QEMU: ppc64: sPAPR emulator leaks the host hardware identity", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8934.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8934.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-8934", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28149", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.2802", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28072", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28082", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28065", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.2822", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28264", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28055", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28121", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28165", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28172", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28129", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-8934" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8934", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8934" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-02/msg04821.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-02/msg04821.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20190411-0006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20190411-0006/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/02/21/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/02/21/1" }, { "reference_url": "http://www.securityfocus.com/bid/107115", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/107115" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668022", "reference_id": "1668022", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668022" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922923", "reference_id": "922923", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922923" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8934", "reference_id": "CVE-2019-8934", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:N/A:N" }, { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8934" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-8934" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j11x-bba3-zkdj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35423?format=api", "vulnerability_id": "VCID-j1gy-ttz5-1yct", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-26353.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-26353.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47052", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47071", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47019", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47074", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.4707", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47095", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47068", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47076", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47132", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47128", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2063197", "reference_id": "2063197", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2063197" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5002", "reference_id": "RHSA-2022:5002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5263", "reference_id": "RHSA-2022:5263", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5263" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5821", "reference_id": "RHSA-2022:5821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5821" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-26353" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j1gy-ttz5-1yct" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35419?format=api", "vulnerability_id": "VCID-j6hs-wm45-s3ej", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20257.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20257.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20257", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22726", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.229", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22944", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22737", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22812", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22864", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22885", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22848", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22792", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22806", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.228", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2276", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20257" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20257", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20257" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1930087", "reference_id": "1930087", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1930087" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984450", "reference_id": "984450", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984450" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5238", "reference_id": "RHSA-2021:5238", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5238" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0081", "reference_id": "RHSA-2022:0081", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0081" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20257" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j6hs-wm45-s3ej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82901?format=api", "vulnerability_id": "VCID-jdmp-aggh-ufhy", "summary": "QEMU: NULL pointer dereference in hw/sparc64/sun4u.c leading to DoS", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5008.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5008.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5008", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78565", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78572", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78603", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78584", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.7861", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78616", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78641", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78622", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78615", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78644", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78642", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78638", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5008" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705915", "reference_id": "1705915", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705915" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927439", "reference_id": "927439", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927439" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-5008" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jdmp-aggh-ufhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80185?format=api", "vulnerability_id": "VCID-jmca-kswb-1beq", "summary": "QEMU: ati-vga: inconsistent check in ati_2d_blt() may lead to out-of-bounds write", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3638.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3638.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05164", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05208", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05237", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05261", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05297", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05317", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05282", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05268", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05254", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05199", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05201", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05334", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1979858", "reference_id": "1979858", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1979858" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992726", "reference_id": "992726", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992726" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3638" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jmca-kswb-1beq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56782?format=api", "vulnerability_id": "VCID-jnxy-g6wu-8ubu", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5683.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5683.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07573", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07682", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07714", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0774", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07759", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07758", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07744", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08167", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08117", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08025", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0801", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530356", "reference_id": "1530356", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530356" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=887392", "reference_id": "887392", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=887392" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2162", "reference_id": "RHSA-2018:2162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2162" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-5683" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jnxy-g6wu-8ubu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83605?format=api", "vulnerability_id": "VCID-jq6v-ra9m-sqgz", "summary": "QEMU: cirrus: OOB access when updating VGA display", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7858.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7858.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7858", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17159", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17324", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17372", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17151", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17242", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.173", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17314", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17264", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17205", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17144", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.1715", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17185", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7858" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7858", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7858" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553402", "reference_id": "1553402", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553402" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892497", "reference_id": "892497", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892497" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1369", "reference_id": "RHSA-2018:1369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1416", "reference_id": "RHSA-2018:1416", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1416" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1643", "reference_id": "RHSA-2018:1643", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1643" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1644", "reference_id": "RHSA-2018:1644", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1644" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1645", "reference_id": "RHSA-2018:1645", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1645" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1646", "reference_id": "RHSA-2018:1646", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1646" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2162", "reference_id": "RHSA-2018:2162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2162" }, { "reference_url": "https://usn.ubuntu.com/3649-1/", "reference_id": "USN-3649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-7858" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jq6v-ra9m-sqgz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80797?format=api", "vulnerability_id": "VCID-juek-f6et-x7eb", "summary": "QEMU: e1000e: infinite loop scenario in case of null packet descriptor", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28916.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28916.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28916", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14431", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14494", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14564", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14372", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14457", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14511", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1446", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14423", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14366", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14257", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14258", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14328", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28916" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28916", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28916" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1903064", "reference_id": "1903064", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1903064" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=974687", "reference_id": "974687", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=974687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-28916" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-juek-f6et-x7eb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82280?format=api", "vulnerability_id": "VCID-ke54-4uc4-rkbs", "summary": "qemu: hw/display/bochs-display.c does not ensure a sufficient PCI config space allocation leading to a buffer overflow involving the PCIe extended config space", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15034.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15034.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40955", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40956", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41017", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.4106", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41031", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41036", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41068", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40994", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41043", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.4105", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41069", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41033", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01959.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01959.html" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4665" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1812659", "reference_id": "1812659", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1812659" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:4.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15034", "reference_id": "CVE-2019-15034", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "5.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15034" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-15034" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ke54-4uc4-rkbs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63735?format=api", "vulnerability_id": "VCID-km1b-1rvd-q3fa", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10806.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10806.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15393", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15344", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26336", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26389", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26431", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26206", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26273", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26321", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26328", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26282", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26223", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26228", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:N/I:N/A:C" }, { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1468496", "reference_id": "1468496", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1468496" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867751", "reference_id": "867751", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867751" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-10806" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-km1b-1rvd-q3fa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48521?format=api", "vulnerability_id": "VCID-kvww-v5vg-qbdt", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5578.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5578.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5578", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41884", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41948", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41976", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41902", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41952", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41963", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41987", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41949", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41935", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41985", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41957", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41886", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5578" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1415795", "reference_id": "1415795", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1415795" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-5578" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kvww-v5vg-qbdt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83087?format=api", "vulnerability_id": "VCID-kwra-y7vr-ykdg", "summary": "Qemu: Integer overflow in ccid_card_vscard_read() allows memory corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18438.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18438.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18438", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25625", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.2575", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25822", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25865", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25634", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25706", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25753", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25763", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25723", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25665", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25667", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.2565", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18438" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1609015", "reference_id": "1609015", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1609015" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911470", "reference_id": "911470", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911470" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-18438" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kwra-y7vr-ykdg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/77875?format=api", "vulnerability_id": "VCID-kx81-eex4-hug8", "summary": "QEMU: virtio-net: stack buffer overflow in virtio_net_flush_tx()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6693.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6693.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6693", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06987", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06823", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06923", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06863", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06845", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06866", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06853", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06907", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06938", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06935", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06928", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6693" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6693", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6693" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254580", "reference_id": "2254580", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-21T14:46:00Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254580" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-6693", "reference_id": "CVE-2023-6693", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-21T14:46:00Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-6693" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2962", "reference_id": "RHSA-2024:2962", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-21T14:46:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:4492", "reference_id": "RHSA-2025:4492", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-21T14:46:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:4492" }, { "reference_url": "https://usn.ubuntu.com/6954-1/", "reference_id": "USN-6954-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6954-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2023-6693" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kx81-eex4-hug8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48520?format=api", "vulnerability_id": "VCID-mgn9-kzp9-wke5", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5552.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5552.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5552", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41884", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41948", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41976", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41902", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41952", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41963", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41987", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41949", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41935", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41985", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41957", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41886", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5552" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1415281", "reference_id": "1415281", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1415281" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=852119", "reference_id": "852119", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=852119" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-5552" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mgn9-kzp9-wke5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80745?format=api", "vulnerability_id": "VCID-mn7m-an9j-yucj", "summary": "QEMU: heap buffer overflow in msix_table_mmio_write() in hw/pci/msix.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27821.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27821.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27821", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10652", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10792", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10855", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10682", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10759", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10815", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10827", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10797", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10772", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10634", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10649", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10774", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27821" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27821", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27821" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902651", "reference_id": "1902651", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902651" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977616", "reference_id": "977616", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-27821" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mn7m-an9j-yucj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73636?format=api", "vulnerability_id": "VCID-mzsa-tcqf-effc", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-02/msg00073.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-02/msg00073.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6778.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6778.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22685", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22721", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22753", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22767", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22762", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22861", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22905", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22697", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22773", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22825", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22847", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2281", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg03132.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg03132.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/01/24/5", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/01/24/5" }, { "reference_url": "http://www.securityfocus.com/bid/106758", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106758" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1664205", "reference_id": "1664205", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1664205" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921525", "reference_id": "921525", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921525" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6778", "reference_id": "CVE-2019-6778", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6778" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1883", "reference_id": "RHSA-2019:1883", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1883" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1968", "reference_id": "RHSA-2019:1968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-6778" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mzsa-tcqf-effc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35403?format=api", "vulnerability_id": "VCID-nb4k-f7rm-kuhg", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3582.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3582.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3582", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37003", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37176", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37204", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37035", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37086", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37099", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37109", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37075", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37049", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37095", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37077", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.3702", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3582" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1966266", "reference_id": "1966266", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1966266" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990565", "reference_id": "990565", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990565" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3582" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nb4k-f7rm-kuhg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50150?format=api", "vulnerability_id": "VCID-ncpf-ttuc-fqe7", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9060.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9060.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9060", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25654", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.2553", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25572", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25558", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25724", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25766", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25535", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25608", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25655", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25666", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25625", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25568", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9060" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9060", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9060" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452597", "reference_id": "1452597", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452597" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9060" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ncpf-ttuc-fqe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80430?format=api", "vulnerability_id": "VCID-ne4d-zj65-qkgx", "summary": "QEMU: fdc: heap buffer overflow in DMA read data transfers", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3507.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3507.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3507", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08241", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08296", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08349", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08293", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08356", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08373", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08365", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08345", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08328", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08225", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08212", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3507" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3507", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3507" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951118", "reference_id": "1951118", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951118" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987410", "reference_id": "987410", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7472", "reference_id": "RHSA-2022:7472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7967", "reference_id": "RHSA-2022:7967", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7967" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3507" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ne4d-zj65-qkgx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80905?format=api", "vulnerability_id": "VCID-nuwe-tupt-wfhg", "summary": "QEMU: usb: hcd-ohci: infinite loop issue while processing transfer descriptors", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25625.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25625.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25625", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0885", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08724", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08699", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35147", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35054", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35098", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35125", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.3513", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35095", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35071", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34948", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35176", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25625" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25625", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25625" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879808", "reference_id": "1879808", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879808" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970542", "reference_id": "970542", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970542" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25625" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nuwe-tupt-wfhg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63886?format=api", "vulnerability_id": "VCID-p1bu-wmxq-27dm", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14167.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14167.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22568", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22661", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22604", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22619", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22616", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35705", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35731", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35612", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35658", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35682", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35691", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35504", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:N/I:P/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-09/msg01032.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-09/msg01032.html" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3991" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/09/07/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/09/07/2" }, { "reference_url": "http://www.securityfocus.com/bid/100694", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/100694" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489375", "reference_id": "1489375", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489375" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874606", "reference_id": "874606", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874606" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14167", "reference_id": "CVE-2017-14167", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3368", "reference_id": "RHSA-2017:3368", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3368" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3369", "reference_id": "RHSA-2017:3369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-14167" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p1bu-wmxq-27dm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81124?format=api", "vulnerability_id": "VCID-p2we-9qfu-17eb", "summary": "QEMU: usb: use-after-free issue while setting up packet", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25084.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25084.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25084", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10378", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10273", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10244", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11082", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10966", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11043", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11097", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.111", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11068", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11045", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10944", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11145", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25084" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25084", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25084" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879652", "reference_id": "1879652", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879652" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970539", "reference_id": "970539", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970539" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25084" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p2we-9qfu-17eb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31747?format=api", "vulnerability_id": "VCID-phfy-zv23-sqcr", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1711.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1711.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1711", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68175", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68197", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68215", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68192", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68243", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68258", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68283", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.6827", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68236", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68276", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68287", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68267", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1711" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1794290", "reference_id": "1794290", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1794290" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949731", "reference_id": "949731", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949731" }, { "reference_url": "https://security.gentoo.org/glsa/202005-02", "reference_id": "GLSA-202005-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0669", "reference_id": "RHSA-2020:0669", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0669" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0730", "reference_id": "RHSA-2020:0730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0730" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0731", "reference_id": "RHSA-2020:0731", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0731" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0773", "reference_id": "RHSA-2020:0773", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0773" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1150", "reference_id": "RHSA-2020:1150", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1150" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1216", "reference_id": "RHSA-2020:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1296", "reference_id": "RHSA-2020:1296", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1296" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1300", "reference_id": "RHSA-2020:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1352", "reference_id": "RHSA-2020:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1358", "reference_id": "RHSA-2020:1358", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1358" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1505", "reference_id": "RHSA-2020:1505", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1505" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2472", "reference_id": "RHSA-2020:2472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2472" }, { "reference_url": "https://usn.ubuntu.com/4283-1/", "reference_id": "USN-4283-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4283-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-1711" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-phfy-zv23-sqcr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35397?format=api", "vulnerability_id": "VCID-q38v-9gvs-sydf", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3545.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3545.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30389", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30418", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30464", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30272", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30331", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30366", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30368", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30324", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30277", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30291", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30273", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30229", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958955", "reference_id": "1958955", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958955" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042", "reference_id": "989042", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3545" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q38v-9gvs-sydf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63885?format=api", "vulnerability_id": "VCID-q49g-ggaf-cqbt", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13711.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13711.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01754", "scoring_system": "epss", "scoring_elements": "0.82619", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01754", "scoring_system": "epss", "scoring_elements": "0.82615", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86407", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86418", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86436", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86437", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86455", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86465", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86479", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86478", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86472", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86488", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486400", "reference_id": "1486400", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486400" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873875", "reference_id": "873875", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-13711" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q49g-ggaf-cqbt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82943?format=api", "vulnerability_id": "VCID-qejd-5dkk-muhc", "summary": "QEMU: pvrdma: memory leakage in device hotplug", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20123.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20123.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20123", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36064", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36259", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36293", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36128", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36177", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36195", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36201", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36164", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36138", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.3618", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36165", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36114", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20123" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1658963", "reference_id": "1658963", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1658963" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916442", "reference_id": "916442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916442" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20123" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qejd-5dkk-muhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35412?format=api", "vulnerability_id": "VCID-qn73-3gkb-rkbm", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3930.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3930.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3930", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17001", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17172", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17224", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16955", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17044", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17103", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17078", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17032", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16971", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16908", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.1691", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16947", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3930" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3930", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3930" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2020588", "reference_id": "2020588", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2020588" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5065", "reference_id": "RHSA-2021:5065", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5065" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5238", "reference_id": "RHSA-2021:5238", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5238" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0081", "reference_id": "RHSA-2022:0081", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0081" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" }, { "reference_url": "https://usn.ubuntu.com/5772-1/", "reference_id": "USN-5772-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5772-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3930" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qn73-3gkb-rkbm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90990?format=api", "vulnerability_id": "VCID-qnpg-992x-5kcn", "summary": "security update", "references": [], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "DSA-4566-1 qemu" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qnpg-992x-5kcn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78075?format=api", "vulnerability_id": "VCID-qs61-1esc-c3cz", "summary": "QEMU: improper IDE controller reset can lead to MBR overwrite", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5088.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5088.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5088", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0219", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02137", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02134", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02119", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02115", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0209", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02103", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02143", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02139", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02157", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5088" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5088", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5088" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2247283", "reference_id": "2247283", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2247283" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-5088", "reference_id": "CVE-2023-5088", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-5088" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2135", "reference_id": "RHSA-2024:2135", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2135" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2962", "reference_id": "RHSA-2024:2962", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2962" }, { "reference_url": "https://lore.kernel.org/all/20230921160712.99521-1-simon.rowe@nutanix.com/T/", "reference_id": "T", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://lore.kernel.org/all/20230921160712.99521-1-simon.rowe@nutanix.com/T/" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2023-5088" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qs61-1esc-c3cz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35409?format=api", "vulnerability_id": "VCID-r47h-wdgy-7bga", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3748.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3748.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10319", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10438", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10505", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10365", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10503", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10533", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.105", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10478", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10345", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10449", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1998514", "reference_id": "1998514", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1998514" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=993401", "reference_id": "993401", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=993401" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4112", "reference_id": "RHSA-2021:4112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5036", "reference_id": "RHSA-2021:5036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1759", "reference_id": "RHSA-2022:1759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1759" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3748" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r47h-wdgy-7bga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80608?format=api", "vulnerability_id": "VCID-r51r-u7mq-93cy", "summary": "QEMU: scsi: mptsas: use-after-free while processing io requests", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3392.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3392.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3392", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07325", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07437", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07479", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07461", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07519", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07541", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07543", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07529", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07516", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07438", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07428", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07557", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3392" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3392", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3392" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924042", "reference_id": "1924042", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924042" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984449", "reference_id": "984449", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984449" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3392" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r51r-u7mq-93cy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/43771?format=api", "vulnerability_id": "VCID-rdgu-3kat-j7c6", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9824.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9824.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28427", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28501", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28544", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28339", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28405", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28447", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2845", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28408", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2835", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28361", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28293", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1678515", "reference_id": "1678515", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1678515" }, { "reference_url": "https://security.gentoo.org/glsa/201904-25", "reference_id": "GLSA-201904-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201904-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1650", "reference_id": "RHSA-2019:1650", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1650" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2078", "reference_id": "RHSA-2019:2078", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3345", "reference_id": "RHSA-2019:3345", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3345" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-9824" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rdgu-3kat-j7c6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80970?format=api", "vulnerability_id": "VCID-re83-uvh8-5bgq", "summary": "QEMU: out-of-bounds read/write in ati-vga device emulation in ati_2d_blt()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24352.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24352.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24352", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33459", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33616", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33649", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33488", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33533", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33566", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.3356", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33518", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33495", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35132", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35195", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35181", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24352" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24352", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24352" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1847584", "reference_id": "1847584", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1847584" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968820", "reference_id": "968820", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968820" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-24352" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-re83-uvh8-5bgq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56777?format=api", "vulnerability_id": "VCID-rkxf-jp2j-mqgf", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15124.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15124.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82133", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82242", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82217", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82209", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82204", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.8224", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82146", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82168", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82164", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.8219", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82198", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:N/I:N/A:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.securityfocus.com/bid/102295", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102295" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525195", "reference_id": "1525195", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525195" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884806", "reference_id": "884806", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884806" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15124", "reference_id": "CVE-2017-15124", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15124" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3062", "reference_id": "RHSA-2018:3062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3062" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15124" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rkxf-jp2j-mqgf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/76578?format=api", "vulnerability_id": "VCID-ruzy-eqc8-5ubs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14378.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14378.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.9111", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91116", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91124", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91131", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91144", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.9115", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91158", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91159", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91183", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91184", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91187", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14378" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745", "reference_id": "1734745", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933741", "reference_id": "933741", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933741" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933742", "reference_id": "933742", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933742" }, { "reference_url": "https://github.com/vishnudevtj/exploits/blob/bdbe2647969150c63ee3b34da5a2deb056e64f0b/qemu/CVE-2019-14378/exp.c", "reference_id": "CVE-2019-14378", "reference_type": "exploit", "scores": [], "url": "https://github.com/vishnudevtj/exploits/blob/bdbe2647969150c63ee3b34da5a2deb056e64f0b/qemu/CVE-2019-14378/exp.c" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47320.c", "reference_id": "CVE-2019-14378", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47320.c" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3179", "reference_id": "RHSA-2019:3179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3403", "reference_id": "RHSA-2019:3403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3494", "reference_id": "RHSA-2019:3494", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3494" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3742", "reference_id": "RHSA-2019:3742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3787", "reference_id": "RHSA-2019:3787", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3787" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3968", "reference_id": "RHSA-2019:3968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:4344", "reference_id": "RHSA-2019:4344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:4344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0366", "reference_id": "RHSA-2020:0366", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0366" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1216", "reference_id": "RHSA-2020:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2065", "reference_id": "RHSA-2020:2065", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2065" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2126", "reference_id": "RHSA-2020:2126", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2126" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-14378" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ruzy-eqc8-5ubs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81468?format=api", "vulnerability_id": "VCID-rvs5-s55e-9ueb", "summary": "qemu: weak signature generation in Pointer Authentication support for ARM", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10702.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10702.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10702", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10467", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10609", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10673", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10536", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10608", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10667", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10681", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1065", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10625", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10489", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10508", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10633", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10702", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10702" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809948", "reference_id": "1809948", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809948" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-10702" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rvs5-s55e-9ueb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56781?format=api", "vulnerability_id": "VCID-rxsw-t1ut-rkau", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18043.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18043.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32815", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32946", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32981", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32804", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32852", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32881", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32882", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32844", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32818", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3286", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32837", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32801", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1536377", "reference_id": "1536377", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1536377" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-18043" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rxsw-t1ut-rkau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62352?format=api", "vulnerability_id": "VCID-rz5x-q1ne-53he", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could lead to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14394.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14394.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14394", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06818", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06901", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06951", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06935", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06989", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0702", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07025", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07014", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07007", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06946", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0693", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07064", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14394" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14394", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14394" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1908004", "reference_id": "1908004", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1908004" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979677", "reference_id": "979677", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979677" }, { "reference_url": "https://security.gentoo.org/glsa/202408-18", "reference_id": "GLSA-202408-18", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-18" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-14394" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rz5x-q1ne-53he" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61638?format=api", "vulnerability_id": "VCID-sy57-hngf-d3gn", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13791.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13791.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13791", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.3855", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.3868", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38702", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38632", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38683", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38692", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38664", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38638", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38686", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38586", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13791" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13791", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13791" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843764", "reference_id": "1843764", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843764" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13791" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sy57-hngf-d3gn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80755?format=api", "vulnerability_id": "VCID-t2y3-nbz8-jqa7", "summary": "QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29129.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29129.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29129", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.50965", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51081", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51058", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51103", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51018", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51043", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51057", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51054", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51097", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51075", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29129" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902231", "reference_id": "1902231", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902231" }, { "reference_url": "https://security.archlinux.org/ASA-202012-7", "reference_id": "ASA-202012-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-7" }, { "reference_url": "https://security.archlinux.org/AVG-1305", "reference_id": "AVG-1305", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-29129" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t2y3-nbz8-jqa7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35375?format=api", "vulnerability_id": "VCID-t44w-g1ys-47e6", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15859.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15859.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15859", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09552", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09537", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30818", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32562", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32385", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32434", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32461", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32465", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32427", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.324", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32436", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32414", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15859" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15859", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15859" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1859168", "reference_id": "1859168", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1859168" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=965978", "reference_id": "965978", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=965978" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-15859" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t44w-g1ys-47e6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78215?format=api", "vulnerability_id": "VCID-t6cq-kfkw-wbch", "summary": "QEMU: virtio-crypto: heap buffer overflow in virtio_crypto_sym_op_helper()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3180.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3180", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02387", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02307", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02313", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0231", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02334", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02318", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02304", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02301", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02285", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02292", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3180" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222424", "reference_id": "2222424", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222424" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3180", "reference_id": "CVE-2023-3180", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-3180" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00006.html", "reference_id": "msg00006.html", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00006.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MURWGXDIF2WTDXV36T6HFJDBL632AO7R/", "reference_id": "MURWGXDIF2WTDXV36T6HFJDBL632AO7R", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MURWGXDIF2WTDXV36T6HFJDBL632AO7R/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230831-0008/", "reference_id": "ntap-20230831-0008", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230831-0008/" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2023-3180" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t6cq-kfkw-wbch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62354?format=api", "vulnerability_id": "VCID-takm-jn93-eqgb", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could lead to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1050.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1050.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1050", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08132", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08192", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08244", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08255", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08275", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08266", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08246", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08228", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08123", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08109", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08273", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1050" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1050", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1050" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014589", "reference_id": "1014589", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014589" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069625", "reference_id": "2069625", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069625" }, { "reference_url": "https://security.gentoo.org/glsa/202408-18", "reference_id": "GLSA-202408-18", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-18" }, { "reference_url": "https://usn.ubuntu.com/6167-1/", "reference_id": "USN-6167-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6167-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-1050" ], "risk_score": 3.7, "exploitability": "0.5", "weighted_severity": "7.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-takm-jn93-eqgb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80976?format=api", "vulnerability_id": "VCID-tk7k-71bb-97hh", "summary": "QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25723.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25723.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25723", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10443", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10586", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10647", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10513", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10646", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10659", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10628", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10603", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10469", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10487", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10613", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25723" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1898579", "reference_id": "1898579", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1898579" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975276", "reference_id": "975276", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975276" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0648", "reference_id": "RHSA-2021:0648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0771", "reference_id": "RHSA-2021:0771", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0771" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25723" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tk7k-71bb-97hh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73616?format=api", "vulnerability_id": "VCID-tsyt-eq3x-5ucy", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12617.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12617.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93389", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93406", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93422", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93423", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93442", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93447", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93397", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93405", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93413", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93417", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.11739", "scoring_system": "epss", "scoring_elements": "0.93722", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gist.github.com/fakhrizulkifli/c7740d28efa07dafee66d4da5d857ef6", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gist.github.com/fakhrizulkifli/c7740d28efa07dafee66d4da5d857ef6" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00041.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00041.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg03385.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg03385.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "https://www.exploit-db.com/exploits/44925/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.exploit-db.com/exploits/44925/" }, { "reference_url": "http://www.securityfocus.com/bid/104531", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/104531" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1594054", "reference_id": "1594054", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1594054" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902725", "reference_id": "902725", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902725" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44925.txt", "reference_id": "CVE-2018-12617", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44925.txt" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12617", "reference_id": "CVE-2018-12617", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12617" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-12617" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tsyt-eq3x-5ucy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35387?format=api", "vulnerability_id": "VCID-tyv8-tzu8-23fj", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35517.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35517.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35517", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24402", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24528", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24563", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24346", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24414", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24459", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24474", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.2443", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24373", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24388", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24378", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24349", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35517" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35517", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35517" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1915823", "reference_id": "1915823", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1915823" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980814", "reference_id": "980814", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980814" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0711", "reference_id": "RHSA-2021:0711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0743", "reference_id": "RHSA-2021:0743", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0743" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-35517" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tyv8-tzu8-23fj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82950?format=api", "vulnerability_id": "VCID-u1wj-9rfp-wyea", "summary": "QEMU: pvrdma: memory leakage when creating cq/qp", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20126.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20126.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20126", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29535", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29423", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29477", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29496", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29469", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29602", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29651", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29472", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29573", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29575", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.2953", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20126" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20126", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20126" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02824.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02824.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/19/4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/19/4" }, { "reference_url": "http://www.securityfocus.com/bid/106298", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106298" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660751", "reference_id": "1660751", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660751" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20126", "reference_id": "CVE-2018-20126", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20126" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20126" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u1wj-9rfp-wyea" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82028?format=api", "vulnerability_id": "VCID-uj5n-mck2-2uen", "summary": "QEMU: privilege escalation via disas_insn function in TCG mode", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8284.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8284.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8284", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29064", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28971", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29014", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.2904", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29017", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29138", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29188", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28997", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29062", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29104", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.2911", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29065", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8284" }, { "reference_url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1122", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1122" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8284", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8284" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/qemu/qemu/commit/30663fd26c0307e414622c7a8607fbc04f92ec14", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/qemu/qemu/commit/30663fd26c0307e414622c7a8607fbc04f92ec14" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1769670", "reference_id": "1769670", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1769670" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-8284", "reference_id": "CVE-2017-8284", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:C/A:C" }, { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-8284" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-8284" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uj5n-mck2-2uen" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56783?format=api", "vulnerability_id": "VCID-uryz-5yk9-9fd7", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7550.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7550.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24463", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24581", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24617", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24395", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24507", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24523", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24479", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24421", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24437", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24429", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24404", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1549798", "reference_id": "1549798", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1549798" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892041", "reference_id": "892041", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892041" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1369", "reference_id": "RHSA-2018:1369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1643", "reference_id": "RHSA-2018:1643", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1643" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1644", "reference_id": "RHSA-2018:1644", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1644" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1645", "reference_id": "RHSA-2018:1645", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1645" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1646", "reference_id": "RHSA-2018:1646", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1646" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2462", "reference_id": "RHSA-2018:2462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2462" }, { "reference_url": "https://usn.ubuntu.com/3649-1/", "reference_id": "USN-3649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-7550" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uryz-5yk9-9fd7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63620?format=api", "vulnerability_id": "VCID-v4eq-3kfm-uug9", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9373.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9373.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27706", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27533", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27744", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27575", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27643", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27685", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2769", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27589", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458270", "reference_id": "1458270", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458270" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864216", "reference_id": "864216", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9373" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v4eq-3kfm-uug9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4140?format=api", "vulnerability_id": "VCID-v8fp-rzfq-e3bs", "summary": "Information leak via side effects of speculative execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5715.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5715.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.88597", "scoring_system": "epss", "scoring_elements": "0.995", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.88597", "scoring_system": "epss", "scoring_elements": "0.99501", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.9953", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99529", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99533", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99534", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99534", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99539", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99533", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9016", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9016" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0861", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0861" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13220", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13220" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16912", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16912" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16913", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16913" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16914", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16914" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18017", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18017" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18193", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18193" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18203", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18203" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18216", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18216" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18218", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18218" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18222", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18222" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18224", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18224" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18241", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18241" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18257", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18257" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5753", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5753" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000004", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000004" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000199", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000199" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10471", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10471" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10472", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10472" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1065", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1065" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1066", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1066" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10981", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10981" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10982", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10982" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6927", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6927" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7492", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7492" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7757", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7757" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8087", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8087" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8822", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8822" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8897", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8897" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:N/A:N" }, { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securityfocus.com/bid/102376", "reference_id": "102376", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.securityfocus.com/bid/102376" }, { "reference_url": "http://www.securitytracker.com/id/1040071", "reference_id": "1040071", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.securitytracker.com/id/1040071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780", "reference_id": "1519780", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780" }, { "reference_url": "https://www.kb.cert.org/vuls/id/180049", "reference_id": "180049", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.kb.cert.org/vuls/id/180049" }, { "reference_url": "https://seclists.org/bugtraq/2019/Jun/36", "reference_id": "36", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://seclists.org/bugtraq/2019/Jun/36" }, { "reference_url": "https://www.exploit-db.com/exploits/43427/", "reference_id": "43427", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.exploit-db.com/exploits/43427/" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4609", "reference_id": "4609", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4609" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4611", "reference_id": "4611", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4611" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4613", "reference_id": "4613", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4613" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4614", "reference_id": "4614", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4614" }, { "reference_url": "http://www.kb.cert.org/vuls/id/584653", "reference_id": "584653", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.kb.cert.org/vuls/id/584653" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886532", "reference_id": "886532", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886532" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852", "reference_id": "886852", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852" }, { "reference_url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002", "reference_id": "ADV180002", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-254.html", "reference_id": "advisory-254.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-254.html" }, { "reference_url": "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr", "reference_id": "advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr" }, { "reference_url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-001.txt", "reference_id": "ARUBA-PSA-2018-001.txt", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-001.txt" }, { "reference_url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt", "reference_id": "ARUBA-PSA-2019-003.txt", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt" }, { "reference_url": "https://security.archlinux.org/ASA-201801-10", "reference_id": "ASA-201801-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-10" }, { "reference_url": "https://security.archlinux.org/AVG-557", "reference_id": "AVG-557", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-557" }, { "reference_url": "https://security.archlinux.org/AVG-558", "reference_id": "AVG-558", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-558" }, { "reference_url": "https://security.archlinux.org/AVG-559", "reference_id": "AVG-559", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-559" }, { "reference_url": "https://security.archlinux.org/AVG-582", "reference_id": "AVG-582", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-582" }, { "reference_url": "https://security.archlinux.org/AVG-583", "reference_id": "AVG-583", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-583" }, { "reference_url": "https://security.archlinux.org/AVG-987", "reference_id": "AVG-987", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-987" }, { "reference_url": "https://aws.amazon.com/de/security/security-bulletins/AWS-2018-013/", "reference_id": "AWS-2018-013", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://aws.amazon.com/de/security/security-bulletins/AWS-2018-013/" }, { "reference_url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel", "reference_id": "cisco-sa-20180104-cpusidechannel", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel" }, { "reference_url": "https://support.citrix.com/article/CTX231399", "reference_id": "CTX231399", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.citrix.com/article/CTX231399" }, { "reference_url": "https://security.paloaltonetworks.com/CVE-2017-5715", "reference_id": "CVE-2017-5715", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.paloaltonetworks.com/CVE-2017-5715" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/43427.c", "reference_id": "CVE-2017-5753;CVE-2017-5715", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/43427.c" }, { "reference_url": "https://spectreattack.com/spectre.pdf", "reference_id": "CVE-2017-5753;CVE-2017-5715", "reference_type": "exploit", "scores": [], "url": "https://spectreattack.com/spectre.pdf" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03805en_us", "reference_id": "display?docId=emr_na-hpesbhf03805en_us", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03805en_us" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us", "reference_id": "display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us" }, { "reference_url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:03.speculative_execution.asc", "reference_id": "FreeBSD-SA-18:03.speculative_execution.asc", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:03.speculative_execution.asc" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://support.f5.com/csp/article/K91229003", "reference_id": "K91229003", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.f5.com/csp/article/K91229003" }, { "reference_url": "https://support.lenovo.com/us/en/solutions/LEN-18282", "reference_id": "LEN-18282", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.lenovo.com/us/en/solutions/LEN-18282" }, { "reference_url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0001", "reference_id": "mitel-product-security-advisory-18-0001", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0001" }, { "reference_url": "https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/", "reference_id": "mitigations-landing-new-class-timing-attack", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00002.html", "reference_id": "msg00002.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00002.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00003.html", "reference_id": "msg00003.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00003.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00004.html", "reference_id": "msg00004.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00004.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00005.html", "reference_id": "msg00005.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00005.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00009.html", "reference_id": "msg00009.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00009.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00012.html", "reference_id": "msg00012.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00012.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00013.html", "reference_id": "msg00013.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00013.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00019.html", "reference_id": "msg00019.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00019.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00025.html", "reference_id": "msg00025.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00025.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20180104-0001/", "reference_id": "ntap-20180104-0001", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20180104-0001/" }, { "reference_url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html", "reference_id": "reading-privileged-memory-with-side.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0016", "reference_id": "RHSA-2018:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0017", "reference_id": "RHSA-2018:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0018", "reference_id": "RHSA-2018:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0020", "reference_id": "RHSA-2018:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0021", "reference_id": "RHSA-2018:0021", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0021" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0022", "reference_id": "RHSA-2018:0022", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0022" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0023", "reference_id": "RHSA-2018:0023", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0023" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0027", "reference_id": "RHSA-2018:0027", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0027" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0028", "reference_id": "RHSA-2018:0028", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0028" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0292", "reference_id": "RHSA-2018:0292", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:0292" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1062", "reference_id": "RHSA-2018:1062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1129", "reference_id": "RHSA-2018:1129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1130", "reference_id": "RHSA-2018:1130", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1130" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1196", "reference_id": "RHSA-2018:1196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1216", "reference_id": "RHSA-2018:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1252", "reference_id": "RHSA-2018:1252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1252" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1319", "reference_id": "RHSA-2018:1319", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1319" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1346", "reference_id": "RHSA-2018:1346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1967", "reference_id": "RHSA-2018:1967", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1967" }, { "reference_url": "https://spectreattack.com/", "reference_id": "spectreattack.com", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://spectreattack.com/" }, { "reference_url": "http://packetstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.html", "reference_id": "Spectre-Information-Disclosure-Proof-Of-Concept.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://packetstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.html" }, { "reference_url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution", "reference_id": "speculativeexecution", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution" }, { "reference_url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability", "reference_id": "speculative-processor-vulnerability", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf", "reference_id": "ssa-608355.pdf", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf" }, { "reference_url": "https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/", "reference_id": "suse-addresses-meltdown-spectre-vulnerabilities", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/" }, { "reference_url": "https://www.synology.com/support/security/Synology_SA_18_01", "reference_id": "Synology_SA_18_01", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.synology.com/support/security/Synology_SA_18_01" }, { "reference_url": "https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html", "reference_id": "todays-cpu-vulnerability-what-you-need.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html" }, { "reference_url": "https://usn.ubuntu.com/usn/usn-3516-1/", "reference_id": "usn-3516-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/usn/usn-3516-1/" }, { "reference_url": "https://usn.ubuntu.com/3516-1/", "reference_id": "USN-3516-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3516-1/" }, { "reference_url": "https://usn.ubuntu.com/3530-1/", "reference_id": "USN-3530-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3530-1/" }, { "reference_url": "https://usn.ubuntu.com/3531-1/", "reference_id": "USN-3531-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3531-1/" }, { "reference_url": "https://usn.ubuntu.com/3531-3/", "reference_id": "USN-3531-3", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3531-3/" }, { "reference_url": "https://usn.ubuntu.com/3540-1/", "reference_id": "USN-3540-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3540-1/" }, { "reference_url": "https://usn.ubuntu.com/3540-2/", "reference_id": "USN-3540-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3540-2/" }, { "reference_url": "https://usn.ubuntu.com/3541-1/", "reference_id": "USN-3541-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3541-1/" }, { "reference_url": "https://usn.ubuntu.com/3541-2/", "reference_id": "USN-3541-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3541-2/" }, { "reference_url": "https://usn.ubuntu.com/3542-1/", "reference_id": "USN-3542-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3542-1/" }, { "reference_url": "https://usn.ubuntu.com/3542-2/", "reference_id": "USN-3542-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3542-2/" }, { "reference_url": "https://usn.ubuntu.com/3549-1/", "reference_id": "USN-3549-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3549-1/" }, { "reference_url": "https://usn.ubuntu.com/3560-1/", "reference_id": "USN-3560-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3560-1/" }, { "reference_url": "https://usn.ubuntu.com/3561-1/", "reference_id": "USN-3561-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3561-1/" }, { "reference_url": "https://usn.ubuntu.com/3580-1/", "reference_id": "USN-3580-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3580-1/" }, { "reference_url": "https://usn.ubuntu.com/3581-1/", "reference_id": "USN-3581-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3581-1/" }, { "reference_url": "https://usn.ubuntu.com/3581-2/", "reference_id": "USN-3581-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3581-2/" }, { "reference_url": "https://usn.ubuntu.com/3582-1/", "reference_id": "USN-3582-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3582-1/" }, { "reference_url": "https://usn.ubuntu.com/3582-2/", "reference_id": "USN-3582-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3582-2/" }, { "reference_url": "https://usn.ubuntu.com/3594-1/", "reference_id": "USN-3594-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3594-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-1/", "reference_id": "USN-3597-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3597-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-2/", "reference_id": "USN-3597-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3597-2/" }, { "reference_url": "https://usn.ubuntu.com/3620-2/", "reference_id": "USN-3620-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3620-2/" }, { "reference_url": "https://usn.ubuntu.com/3690-1/", "reference_id": "USN-3690-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3690-1/" }, { "reference_url": "https://usn.ubuntu.com/3777-3/", "reference_id": "USN-3777-3", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3777-3/" }, { "reference_url": "https://cert.vde.com/en-us/advisories/vde-2018-002", "reference_id": "vde-2018-002", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert.vde.com/en-us/advisories/vde-2018-002" }, { "reference_url": "https://cert.vde.com/en-us/advisories/vde-2018-003", "reference_id": "vde-2018-003", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert.vde.com/en-us/advisories/vde-2018-003" }, { "reference_url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html", "reference_id": "VMSA-2018-0002.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html" }, { "reference_url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0004.html", "reference_id": "VMSA-2018-0004.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0004.html" }, { "reference_url": "https://www.vmware.com/security/advisories/VMSA-2018-0007.html", "reference_id": "VMSA-2018-0007.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/security/advisories/VMSA-2018-0007.html" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-254.html", "reference_id": "XSA-254", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-254.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-5715" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v8fp-rzfq-e3bs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82948?format=api", "vulnerability_id": "VCID-vbq6-qtub-ffbg", "summary": "QEMU: rdma: OOB access when building scatter-gather array", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20124.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20124.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20124", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35716", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35769", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.3583", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35818", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35913", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35944", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35775", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35825", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35848", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35855", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35814", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35791", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20124" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02822.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02822.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/18/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/18/2" }, { "reference_url": "http://www.securityfocus.com/bid/106290", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106290" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660372", "reference_id": "1660372", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660372" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922461", "reference_id": "922461", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922461" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20124", "reference_id": "CVE-2018-20124", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20124" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20124" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vbq6-qtub-ffbg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50151?format=api", "vulnerability_id": "VCID-vefc-bfc3-fyg2", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9310.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9310.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26017", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26101", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.2614", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25974", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26026", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26036", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25991", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25932", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25937", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25919", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25889", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452620", "reference_id": "1452620", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452620" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863840", "reference_id": "863840", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863840" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9310" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vefc-bfc3-fyg2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80904?format=api", "vulnerability_id": "VCID-vpp8-a7sw-pqef", "summary": "QEMU: usb: hcd-ohci: out-of-bound access issue while processing transfer descriptors", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25624.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09846", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09939", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09986", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09884", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.0996", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10009", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10025", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09984", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09963", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09839", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09808", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09957", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879801", "reference_id": "1879801", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879801" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970541", "reference_id": "970541", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970541" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25624" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vpp8-a7sw-pqef" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35425?format=api", "vulnerability_id": "VCID-vpu8-k8me-tfe6", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-26354.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-26354.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01485", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01401", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01395", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01396", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01386", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.014", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01408", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04303", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04324", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04333", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04365", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2063257", "reference_id": "2063257", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2063257" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5002", "reference_id": "RHSA-2022:5002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5263", "reference_id": "RHSA-2022:5263", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5263" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5821", "reference_id": "RHSA-2022:5821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5821" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-26354" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vpu8-k8me-tfe6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35418?format=api", "vulnerability_id": "VCID-vrwy-exwv-vyhr", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20203.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20203.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20203", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08695", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08723", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08771", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08697", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08773", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08799", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08801", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08768", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08752", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08641", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08631", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08784", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20203" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20203", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20203" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922441", "reference_id": "1922441", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922441" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984452", "reference_id": "984452", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984452" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20203" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vrwy-exwv-vyhr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35390?format=api", "vulnerability_id": "VCID-vvaj-skpn-u3ar", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3409.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3409.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3409", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16897", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16727", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40602", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40612", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40593", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40573", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.4062", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.4059", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40512", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.4063", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40552", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3409" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928146", "reference_id": "1928146", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928146" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986795", "reference_id": "986795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986795" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3409" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vvaj-skpn-u3ar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69425?format=api", "vulnerability_id": "VCID-vxg6-nx6s-6feu", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15289.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15289.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08243", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08218", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.082", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08096", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08082", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0937", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13564", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1336", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13441", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1349", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13404", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13503", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02557.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02557.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/10/12/16", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/10/12/16" }, { "reference_url": "http://www.securityfocus.com/bid/101262", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/101262" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501290", "reference_id": "1501290", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501290" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880832", "reference_id": "880832", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880832" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15289", "reference_id": "CVE-2017-15289", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "6.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15289" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3368", "reference_id": "RHSA-2017:3368", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3368" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3369", "reference_id": "RHSA-2017:3369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0516", "reference_id": "RHSA-2018:0516", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0516" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15289" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vxg6-nx6s-6feu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50152?format=api", "vulnerability_id": "VCID-w1je-asqn-fbcr", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9330.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9330.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10501", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10493", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10563", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10427", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10568", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10597", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10565", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.164", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16438", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21443", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28348", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28337", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1457697", "reference_id": "1457697", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1457697" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863943", "reference_id": "863943", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863943" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9330" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w1je-asqn-fbcr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35376?format=api", "vulnerability_id": "VCID-wdjx-9f36-abgu", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15863.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15863.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13872", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13955", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14011", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13813", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13896", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13948", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13905", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13869", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1382", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31127", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31177", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31158", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1853725", "reference_id": "1853725", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1853725" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-15863" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wdjx-9f36-abgu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61631?format=api", "vulnerability_id": "VCID-wg5b-8smu-b3fm", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10717.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10717.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10717", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37232", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37397", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37421", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37249", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.373", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37312", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37323", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.3729", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37262", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37309", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37291", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37238", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10717" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1827808", "reference_id": "1827808", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1827808" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959746", "reference_id": "959746", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959746" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-10717" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wg5b-8smu-b3fm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35381?format=api", "vulnerability_id": "VCID-wjxf-kgdw-2kau", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16092.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16092.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11559", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11685", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11728", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11513", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.116", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1166", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11672", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11635", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11608", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1147", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11472", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11598", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-16092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860283", "reference_id": "1860283", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860283" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5111", "reference_id": "RHSA-2020:5111", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5111" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0346", "reference_id": "RHSA-2021:0346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0347", "reference_id": "RHSA-2021:0347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0459", "reference_id": "RHSA-2021:0459", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0459" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0934", "reference_id": "RHSA-2021:0934", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0934" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-16092" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wjxf-kgdw-2kau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4232?format=api", "vulnerability_id": "VCID-wm9d-ymbb-sfdc", "summary": "QEMU: usb: out-of-bounds r/w access issue", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14364.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14364.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94268", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94277", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94289", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.9429", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94299", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94304", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94308", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94309", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94324", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.9433", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94329", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201", "reference_id": "1869201", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968947", "reference_id": "968947", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968947" }, { "reference_url": "https://security.gentoo.org/glsa/202009-14", "reference_id": "GLSA-202009-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202009-14" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4047", "reference_id": "RHSA-2020:4047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4048", "reference_id": "RHSA-2020:4048", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4048" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4049", "reference_id": "RHSA-2020:4049", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4049" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4050", "reference_id": "RHSA-2020:4050", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4050" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4051", "reference_id": "RHSA-2020:4051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4052", "reference_id": "RHSA-2020:4052", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4052" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4053", "reference_id": "RHSA-2020:4053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4053" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4054", "reference_id": "RHSA-2020:4054", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4054" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4055", "reference_id": "RHSA-2020:4055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4056", "reference_id": "RHSA-2020:4056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4058", "reference_id": "RHSA-2020:4058", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4058" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4059", "reference_id": "RHSA-2020:4059", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4059" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4078", "reference_id": "RHSA-2020:4078", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4079", "reference_id": "RHSA-2020:4079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4111", "reference_id": "RHSA-2020:4111", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4111" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4115", "reference_id": "RHSA-2020:4115", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4115" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4162", "reference_id": "RHSA-2020:4162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4167", "reference_id": "RHSA-2020:4167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4172", "reference_id": "RHSA-2020:4172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4172" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4176", "reference_id": "RHSA-2020:4176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4290", "reference_id": "RHSA-2020:4290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4291", "reference_id": "RHSA-2020:4291", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4291" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" }, { "reference_url": "https://usn.ubuntu.com/4511-1/", "reference_id": "USN-4511-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4511-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-335.html", "reference_id": "XSA-335", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-335.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-14364", "XSA-335" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wm9d-ymbb-sfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80784?format=api", "vulnerability_id": "VCID-wyr6-c2nv-p3a2", "summary": "QEMU: ide: atapi: OOB access while processing read commands", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29443.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29443.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29443", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22657", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22831", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22875", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22666", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22741", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22793", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22815", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22776", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2272", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22736", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22731", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22689", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29443" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29443", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29443" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1917446", "reference_id": "1917446", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1917446" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983575", "reference_id": "983575", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2322", "reference_id": "RHSA-2021:2322", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2322" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2529", "reference_id": "RHSA-2021:2529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2529" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-29443" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wyr6-c2nv-p3a2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80977?format=api", "vulnerability_id": "VCID-x8ue-gf65-uket", "summary": "QEMU: heap buffer overflow in sdhci_sdma_transfer_multi_blocks() in hw/sd/sdhci.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17380.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17380.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-17380", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53595", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53571", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53607", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53612", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53541", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53509", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.5356", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53556", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53606", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53588", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00325", "scoring_system": "epss", "scoring_elements": "0.55504", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00325", "scoring_system": "epss", "scoring_elements": "0.55393", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-17380" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17380" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862167", "reference_id": "1862167", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862167" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970937", "reference_id": "970937", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970937" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-17380" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x8ue-gf65-uket" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73371?format=api", "vulnerability_id": "VCID-xzmg-gkxx-buau", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17962.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17962.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.4983", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49868", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49896", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49847", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49901", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49895", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49913", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49885", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49886", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49931", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49932", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49904", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636773", "reference_id": "1636773", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636773" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911468", "reference_id": "911468", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-17962" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xzmg-gkxx-buau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63883?format=api", "vulnerability_id": "VCID-y16a-n7u8-zfen", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9375.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9375.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27706", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27533", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27744", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27575", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27643", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27685", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2769", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27589", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9375" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458744", "reference_id": "1458744", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458744" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864219", "reference_id": "864219", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864219" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9375" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y16a-n7u8-zfen" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63884?format=api", "vulnerability_id": "VCID-yccx-a98b-nfh4", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12809.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12809.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20031", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20105", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20047", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20029", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20033", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25614", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25454", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25502", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25513", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25509", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25577", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25385", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483534", "reference_id": "1483534", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483534" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873849", "reference_id": "873849", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873849" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-12809" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yccx-a98b-nfh4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35408?format=api", "vulnerability_id": "VCID-ycrs-vy13-wbff", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3713.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3713.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09598", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09663", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09714", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09622", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09692", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09741", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09753", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09721", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09705", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09595", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09567", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1994640", "reference_id": "1994640", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1994640" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992727", "reference_id": "992727", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992727" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3713" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ycrs-vy13-wbff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35417?format=api", "vulnerability_id": "VCID-yt3z-g3w7-xfa5", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4207.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4207.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15388", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15427", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15497", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.153", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15438", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.154", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15361", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15295", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15211", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15216", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15267", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036966", "reference_id": "2036966", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036966" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5002", "reference_id": "RHSA-2022:5002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5821", "reference_id": "RHSA-2022:5821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5821" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-4207" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yt3z-g3w7-xfa5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83022?format=api", "vulnerability_id": "VCID-z24v-fz53-zubg", "summary": "QEMU: nvme: Out-of-bounds r/w buffer access in cmb operations", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16847.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16847.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16847", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25671", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25741", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25551", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25624", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25681", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25641", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25584", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25585", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.2557", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25542", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16847" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16847", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16847" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644052", "reference_id": "1644052", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644052" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912655", "reference_id": "912655", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912655" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-16847" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z24v-fz53-zubg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83826?format=api", "vulnerability_id": "VCID-z31k-dhbq-k3ed", "summary": "Qemu: stack buffer overflow in NBD server triggered via long export name", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15118.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15118.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15118", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.8167", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81681", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81704", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81701", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81728", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81732", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81752", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81739", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81733", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81772", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81775", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15118" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15118", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15118" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516922", "reference_id": "1516922", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516922" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883406", "reference_id": "883406", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883406" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/43194.txt", "reference_id": "CVE-2017-15118", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/43194.txt" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg05045.html", "reference_id": "CVE-2017-15118", "reference_type": "exploit", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg05045.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15118" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "7.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z31k-dhbq-k3ed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73613?format=api", "vulnerability_id": "VCID-z4jn-dgcg-x7du", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11806.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11806.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.1568", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15672", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15719", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15783", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15587", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15731", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17036", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17159", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17099", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17041", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17076", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17206", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg01012.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg01012.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "https://www.zerodayinitiative.com/advisories/ZDI-18-567/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-567/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/06/07/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/06/07/1" }, { "reference_url": "http://www.securityfocus.com/bid/104400", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/104400" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1586245", "reference_id": "1586245", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1586245" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901017", "reference_id": "901017", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901017" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11806", "reference_id": "CVE-2018-11806", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" }, { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2462", "reference_id": "RHSA-2018:2462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2762", "reference_id": "RHSA-2018:2762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2762" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2822", "reference_id": "RHSA-2018:2822", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2887", "reference_id": "RHSA-2018:2887", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2887" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-11806" ], "risk_score": 3.7, "exploitability": "0.5", "weighted_severity": "7.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z4jn-dgcg-x7du" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35422?format=api", "vulnerability_id": "VCID-zf4c-x45c-tudm", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0358.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0358.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10785", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1092", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10984", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1081", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10886", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10939", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1094", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10907", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10885", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10749", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10762", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10883", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044863", "reference_id": "2044863", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044863" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0759", "reference_id": "RHSA-2022:0759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0759" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0886", "reference_id": "RHSA-2022:0886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0949", "reference_id": "RHSA-2022:0949", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0949" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0971", "reference_id": "RHSA-2022:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0973", "reference_id": "RHSA-2022:0973", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0973" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-0358" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zf4c-x45c-tudm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82880?format=api", "vulnerability_id": "VCID-zfwq-v3sh-kkbp", "summary": "QEMU: scsi-generic: possible OOB access while handling inquiry request", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6501.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6501.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6501", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30839", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.3081", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30834", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30865", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30845", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30966", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.31013", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30831", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30889", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30919", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30879", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6501" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6501", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6501" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg02324.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg02324.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20190411-0006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20190411-0006/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/01/24/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/01/24/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668160", "reference_id": "1668160", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668160" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920222", "reference_id": "920222", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920222" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:3.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6501", "reference_id": "CVE-2019-6501", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2166", "reference_id": "RHSA-2019:2166", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2166" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-6501" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zfwq-v3sh-kkbp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73633?format=api", "vulnerability_id": "VCID-zjyq-3nyd-k3g9", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3812.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3812.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22199", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22196", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22303", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22244", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22248", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22243", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22357", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22401", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22187", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2227", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22324", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22344", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3812" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "http://www.securityfocus.com/bid/107059", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/107059" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1665792", "reference_id": "1665792", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1665792" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922635", "reference_id": "922635", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922635" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3812", "reference_id": "CVE-2019-3812", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:N/A:N" }, { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3812" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-3812" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zjyq-3nyd-k3g9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61636?format=api", "vulnerability_id": "VCID-zk4y-2xjp-vfcs", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13659.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13659.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10798", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10933", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10999", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10823", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10898", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10951", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10952", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10919", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10896", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10761", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10774", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10895", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842496", "reference_id": "1842496", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842496" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13659" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zk4y-2xjp-vfcs" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31748?format=api", "vulnerability_id": "VCID-145f-vwpy-ukfg", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7039.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7039.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74514", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74519", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74546", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.7452", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74552", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74568", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.7459", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74571", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74563", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.746", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74607", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74599", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7039" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551", "reference_id": "1791551", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949084", "reference_id": "949084", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949084" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949085", "reference_id": "949085", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949085" }, { "reference_url": "https://security.gentoo.org/glsa/202005-02", "reference_id": "GLSA-202005-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0348", "reference_id": "RHSA-2020:0348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1116", "reference_id": "RHSA-2020:1116", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1116" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1150", "reference_id": "RHSA-2020:1150", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1150" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1261", "reference_id": "RHSA-2020:1261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1296", "reference_id": "RHSA-2020:1296", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1296" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1300", "reference_id": "RHSA-2020:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1344", "reference_id": "RHSA-2020:1344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1351", "reference_id": "RHSA-2020:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1352", "reference_id": "RHSA-2020:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1358", "reference_id": "RHSA-2020:1358", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1358" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1360", "reference_id": "RHSA-2020:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2730", "reference_id": "RHSA-2020:2730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2730" }, { "reference_url": "https://usn.ubuntu.com/4283-1/", "reference_id": "USN-4283-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4283-1/" }, { "reference_url": "https://usn.ubuntu.com/4632-1/", "reference_id": "USN-4632-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4632-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-7039" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-145f-vwpy-ukfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56776?format=api", "vulnerability_id": "VCID-1erd-fd8p-hqch", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13672.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13672.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00668", "scoring_system": "epss", "scoring_elements": "0.71226", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73671", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.7367", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73679", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73586", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73609", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73582", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73618", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73631", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73653", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73635", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73626", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486560", "reference_id": "1486560", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486560" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873851", "reference_id": "873851", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873851" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2162", "reference_id": "RHSA-2018:2162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2162" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-13672" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1erd-fd8p-hqch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48526?format=api", "vulnerability_id": "VCID-265c-bbfk-skf3", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=c7dfbf322595ded4e70b626bf83158a9f3807c6a", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=c7dfbf322595ded4e70b626bf83158a9f3807c6a" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00045.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00045.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00048.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00048.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5898.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5898.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5898", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.263", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26113", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26172", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26176", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26151", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26341", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26381", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26154", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26222", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.2627", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26276", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26231", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5898" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5898", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5898" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/07/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/07/3" }, { "reference_url": "http://www.securityfocus.com/bid/96112", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/96112" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419699", "reference_id": "1419699", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1419699" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854729", "reference_id": "854729", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854729" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_desktop:12:sp1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:suse:linux_enterprise_desktop:12:sp1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_desktop:12:sp1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:12:ltss:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:suse:linux_enterprise_server:12:ltss:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:12:ltss:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:12:sp1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:suse:linux_enterprise_server:12:sp1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:12:sp1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server_for_sap:12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:suse:linux_enterprise_server_for_sap:12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server_for_sap:12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5898", "reference_id": "CVE-2017-5898", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5898" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1856", "reference_id": "RHSA-2017:1856", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1856" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-5898" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-265c-bbfk-skf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/43770?format=api", "vulnerability_id": "VCID-32jy-dr7t-2uas", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20815.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20815.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88157", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88166", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88182", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88188", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88208", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88214", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88224", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88217", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.8823", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88229", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1693101", "reference_id": "1693101", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1693101" }, { "reference_url": "https://security.gentoo.org/glsa/201904-25", "reference_id": "GLSA-201904-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201904-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1175", "reference_id": "RHSA-2019:1175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1667", "reference_id": "RHSA-2019:1667", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1723", "reference_id": "RHSA-2019:1723", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1723" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1743", "reference_id": "RHSA-2019:1743", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1743" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1881", "reference_id": "RHSA-2019:1881", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1881" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1968", "reference_id": "RHSA-2019:1968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2507", "reference_id": "RHSA-2019:2507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-20815" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-32jy-dr7t-2uas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50141?format=api", "vulnerability_id": "VCID-3zgd-7juv-43aw", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7471.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7471.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7471", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68395", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68489", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68459", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68497", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.6851", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68415", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68435", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68411", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68461", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68478", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68504", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00566", "scoring_system": "epss", "scoring_elements": "0.68492", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7471" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7471", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7471" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7471", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7471" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:C/I:C/A:C" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=9c6b899f7a46893ab3b671e341a2234e9c0c060e", "reference_id": "", "reference_type": "", "scores": [], "url": "https://git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=9c6b899f7a46893ab3b671e341a2234e9c0c060e" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/04/19/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/04/19/2" }, { "reference_url": "http://www.securityfocus.com/bid/97970", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97970" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443401", "reference_id": "1443401", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443401" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860785", "reference_id": "860785", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860785" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7471", "reference_id": "CVE-2017-7471", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:L/Au:S/C:C/I:C/A:C" }, { "value": "9.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7471" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-7471" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3zgd-7juv-43aw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73370?format=api", "vulnerability_id": "VCID-4276-jfy3-h3ck", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10839.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10839.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81418", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81428", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81449", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81448", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81475", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81481", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81502", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.8149", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81483", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81519", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81521", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81522", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1581013", "reference_id": "1581013", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1581013" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910431", "reference_id": "910431", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-10839" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4276-jfy3-h3ck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50143?format=api", "vulnerability_id": "VCID-4mkn-nd4b-huhh", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=215902d7b6fb50c6fc216fc74f770858278ed904", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=215902d7b6fb50c6fc216fc74f770858278ed904" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7718.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7718.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7718", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32032", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32019", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32036", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32069", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32046", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32159", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32198", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32021", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32072", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32102", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32105", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.32067", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7718" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7718", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7718" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:P/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/04/19/4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/04/19/4" }, { "reference_url": "http://www.securityfocus.com/bid/97957", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97957" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443441", "reference_id": "1443441", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443441" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7718", "reference_id": "CVE-2017-7718", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7718" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0980", "reference_id": "RHSA-2017:0980", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0980" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0981", "reference_id": "RHSA-2017:0981", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0981" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0982", "reference_id": "RHSA-2017:0982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0983", "reference_id": "RHSA-2017:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0984", "reference_id": "RHSA-2017:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0984" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0988", "reference_id": "RHSA-2017:0988", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0988" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1205", "reference_id": "RHSA-2017:1205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1206", "reference_id": "RHSA-2017:1206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1430", "reference_id": "RHSA-2017:1430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1431", "reference_id": "RHSA-2017:1431", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1441", "reference_id": "RHSA-2017:1441", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1441" }, { "reference_url": "https://usn.ubuntu.com/3289-1/", "reference_id": "USN-3289-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3289-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-7718" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4mkn-nd4b-huhh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4098?format=api", "vulnerability_id": "VCID-4s1w-v1qs-9uhp", "summary": "blkif responses leak backend stack data", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10911.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10911.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13709", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13778", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1373", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1364", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13637", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24165", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24017", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24064", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24081", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24002", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24126", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.23951", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9940", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9940" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10810", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10810" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7541", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7541" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7542", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7542" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7889", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7889" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9605", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9605" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:N/A:N" }, { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458870", "reference_id": "1458870", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458870" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869706", "reference_id": "869706", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869706" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" }, { "reference_url": "https://usn.ubuntu.com/3468-1/", "reference_id": "USN-3468-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3468-1/" }, { "reference_url": "https://usn.ubuntu.com/3468-2/", "reference_id": "USN-3468-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3468-2/" }, { "reference_url": "https://usn.ubuntu.com/3468-3/", "reference_id": "USN-3468-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3468-3/" }, { "reference_url": "https://usn.ubuntu.com/3469-1/", "reference_id": "USN-3469-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3469-1/" }, { "reference_url": "https://usn.ubuntu.com/3469-2/", "reference_id": "USN-3469-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3469-2/" }, { "reference_url": "https://usn.ubuntu.com/3470-1/", "reference_id": "USN-3470-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3470-1/" }, { "reference_url": "https://usn.ubuntu.com/3470-2/", "reference_id": "USN-3470-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3470-2/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-216.html", "reference_id": "XSA-216", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-216.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-10911", "XSA-216" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4s1w-v1qs-9uhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50140?format=api", "vulnerability_id": "VCID-542n-bbu2-dyfc", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=d63fb193e71644a073b77ff5ac6f1216f2f6cf6e", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=d63fb193e71644a073b77ff5ac6f1216f2f6cf6e" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7377.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7377.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7377", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22474", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22496", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22537", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22552", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22546", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22648", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22691", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22482", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22563", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22618", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22634", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22592", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7377", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7377" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-03/msg05449.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-03/msg05449.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/04/03/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/04/03/2" }, { "reference_url": "http://www.securityfocus.com/bid/97319", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/97319" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1437871", "reference_id": "1437871", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1437871" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859854", "reference_id": "859854", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859854" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7377", "reference_id": "CVE-2017-7377", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "6.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7377" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3289-1/", "reference_id": "USN-3289-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3289-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-7377" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-542n-bbu2-dyfc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50142?format=api", "vulnerability_id": "VCID-55q4-p9np-kkh6", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7493.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7493.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7493", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18712", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.1885", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18903", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18623", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18702", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18757", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18762", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18715", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18665", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18612", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18624", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18643", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7493" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7493", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7493" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1451709", "reference_id": "1451709", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1451709" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-7493" ], "risk_score": 3.2, "exploitability": "0.5", "weighted_severity": "6.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-55q4-p9np-kkh6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31110?format=api", "vulnerability_id": "VCID-5t1j-7uf3-gyde", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could the worst of which could lead to arbitrary code execution, or\n cause a Denial of Service condition.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=df8bf7a7fe75eb5d5caffa55f5cd4292b757aea6", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=df8bf7a7fe75eb5d5caffa55f5cd4292b757aea6" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6058.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6058.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6058", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87379", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87446", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87447", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87449", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87389", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87404", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87403", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87422", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87429", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87441", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87436", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03408", "scoring_system": "epss", "scoring_elements": "0.87432", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6058" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6058", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6058" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-02/msg03527.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-02/msg03527.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/17/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/17/2" }, { "reference_url": "http://www.securityfocus.com/bid/96277", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/96277" }, { "reference_url": "http://www.securitytracker.com/id/1037856", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1037856" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1423358", "reference_id": "1423358", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1423358" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855616", "reference_id": "855616", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855616" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-6058", "reference_id": "CVE-2017-6058", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-6058" }, { "reference_url": "https://security.gentoo.org/glsa/201704-01", "reference_id": "GLSA-201704-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-01" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-6058" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5t1j-7uf3-gyde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73618?format=api", "vulnerability_id": "VCID-5xgg-2mh6-gfg1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16872.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16872.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.5076", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50816", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50842", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50799", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50856", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50854", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50895", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50873", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50857", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50901", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.5088", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1656114", "reference_id": "1656114", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1656114" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916397", "reference_id": "916397", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916397" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-16872" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5xgg-2mh6-gfg1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48522?format=api", "vulnerability_id": "VCID-7q7c-4788-j3a5", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5579.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5579.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5579", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33401", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.3354", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33573", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33413", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33456", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.3349", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33494", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33453", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33429", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33465", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.3344", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33409", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5579" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416157", "reference_id": "1416157", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416157" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853002", "reference_id": "853002", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853002" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-5579" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7q7c-4788-j3a5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73621?format=api", "vulnerability_id": "VCID-7w8v-hby8-dya5", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17958.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17958.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75425", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75428", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7546", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7544", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75483", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75492", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75511", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7549", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7548", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75522", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75527", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75516", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636712", "reference_id": "1636712", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636712" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911499", "reference_id": "911499", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-17958" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7w8v-hby8-dya5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48523?format=api", "vulnerability_id": "VCID-88ef-174t-tbdr", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commitdiff%3Bh=42922105beb14c2fc58185ea022b9f72fb5465e9", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commitdiff%3Bh=42922105beb14c2fc58185ea022b9f72fb5465e9" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5667.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5667.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5667", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44846", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44932", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44937", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44988", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44982", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44929", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44949", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44892", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44943", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44945", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44966", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00223", "scoring_system": "epss", "scoring_elements": "0.44934", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5667" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5667", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5667" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/01/30/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/01/30/2" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/01/31/10", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/01/31/10" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/12/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/12/1" }, { "reference_url": "http://www.securityfocus.com/bid/95885", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/95885" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1417559", "reference_id": "1417559", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1417559" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853996", "reference_id": "853996", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853996" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5667", "reference_id": "CVE-2017-5667", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5667" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-5667" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-88ef-174t-tbdr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4093?format=api", "vulnerability_id": "VCID-895c-wwg8-cbe5", "summary": "Cirrus VGA Heap overflow via display refresh", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9603.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9603.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9603", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81552", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81563", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81585", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81583", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81611", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81616", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81636", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81623", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81653", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81654", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01587", "scoring_system": "epss", "scoring_elements": "0.81657", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9603" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:S/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1430056", "reference_id": "1430056", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1430056" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857744", "reference_id": "857744", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857744" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0980", "reference_id": "RHSA-2017:0980", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0980" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0981", "reference_id": "RHSA-2017:0981", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0981" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0982", "reference_id": "RHSA-2017:0982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0983", "reference_id": "RHSA-2017:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0984", "reference_id": "RHSA-2017:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0984" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0985", "reference_id": "RHSA-2017:0985", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0985" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0987", "reference_id": "RHSA-2017:0987", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0987" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0988", "reference_id": "RHSA-2017:0988", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0988" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1205", "reference_id": "RHSA-2017:1205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1206", "reference_id": "RHSA-2017:1206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1441", "reference_id": "RHSA-2017:1441", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1441" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-211.html", "reference_id": "XSA-211", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-211.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2016-9603", "XSA-211" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-895c-wwg8-cbe5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63734?format=api", "vulnerability_id": "VCID-ac7j-emx5-v7cn", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9524.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9524.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84009", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.83986", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.83982", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84006", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84007", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88649", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88669", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88673", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88685", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88624", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88633", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88651", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9524" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1460170", "reference_id": "1460170", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1460170" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865755", "reference_id": "865755", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1681", "reference_id": "RHSA-2017:1681", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1681" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1682", "reference_id": "RHSA-2017:1682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1682" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9524" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ac7j-emx5-v7cn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4092?format=api", "vulnerability_id": "VCID-aeh3-vzax-jqfh", "summary": "cirrus_bitblt_cputovideo does not check if memory region is safe", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2620.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2620.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2620", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85019", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85031", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85048", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85053", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85075", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85082", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85099", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85097", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85093", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85115", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0241", "scoring_system": "epss", "scoring_elements": "0.85117", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2620" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1420484", "reference_id": "1420484", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1420484" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855791", "reference_id": "855791", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855791" }, { "reference_url": "https://security.gentoo.org/glsa/201703-07", "reference_id": "GLSA-201703-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201703-07" }, { "reference_url": "https://security.gentoo.org/glsa/201704-01", "reference_id": "GLSA-201704-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0328", "reference_id": "RHSA-2017:0328", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0328" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0329", "reference_id": "RHSA-2017:0329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0329" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0330", "reference_id": "RHSA-2017:0330", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0330" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0331", "reference_id": "RHSA-2017:0331", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0331" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0332", "reference_id": "RHSA-2017:0332", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0332" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0333", "reference_id": "RHSA-2017:0333", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0333" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0334", "reference_id": "RHSA-2017:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0350", "reference_id": "RHSA-2017:0350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0351", "reference_id": "RHSA-2017:0351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0352", "reference_id": "RHSA-2017:0352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0396", "reference_id": "RHSA-2017:0396", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0396" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0454", "reference_id": "RHSA-2017:0454", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0454" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-209.html", "reference_id": "XSA-209", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-209.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-2620", "XSA-209" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aeh3-vzax-jqfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50146?format=api", "vulnerability_id": "VCID-ajxn-xuzk-2qez", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8112.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8112.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8112", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17574", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17569", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17581", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17527", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17536", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17736", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17783", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17512", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17601", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17662", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.1768", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17634", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8112" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8112", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8112" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-04/msg04578.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-04/msg04578.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/04/26/5", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/04/26/5" }, { "reference_url": "http://www.securityfocus.com/bid/98015", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/98015" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1445621", "reference_id": "1445621", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1445621" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861351", "reference_id": "861351", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861351" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-8112", "reference_id": "CVE-2017-8112", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-8112" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-8112" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ajxn-xuzk-2qez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69424?format=api", "vulnerability_id": "VCID-atzs-876n-byg6", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15268.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15268.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83833", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83803", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83798", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83832", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02569", "scoring_system": "epss", "scoring_elements": "0.85465", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87462", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87476", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87478", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87497", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87503", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87515", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15268" }, { "reference_url": "https://bugs.launchpad.net/qemu/+bug/1718964", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.launchpad.net/qemu/+bug/1718964" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02278.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02278.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.securityfocus.com/bid/101277", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/101277" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1496879", "reference_id": "1496879", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1496879" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880836", "reference_id": "880836", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880836" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15268", "reference_id": "CVE-2017-15268", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15268" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15268" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-atzs-876n-byg6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73640?format=api", "vulnerability_id": "VCID-b7v6-247j-kfcs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12155.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12155.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78415", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78421", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78452", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78436", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78462", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78467", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78492", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78474", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78495", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78494", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78491", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712670", "reference_id": "1712670", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712670" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929353", "reference_id": "929353", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2607", "reference_id": "RHSA-2019:2607", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3179", "reference_id": "RHSA-2019:3179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3345", "reference_id": "RHSA-2019:3345", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3345" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3742", "reference_id": "RHSA-2019:3742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3787", "reference_id": "RHSA-2019:3787", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3787" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:4344", "reference_id": "RHSA-2019:4344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:4344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1216", "reference_id": "RHSA-2020:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1216" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-12155" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b7v6-247j-kfcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63736?format=api", "vulnerability_id": "VCID-bbmg-x8h6-67e5", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11334.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11334.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09449", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09424", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09409", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09301", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09304", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10724", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.108", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10856", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10869", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10833", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10897", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12197", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471638", "reference_id": "1471638", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471638" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869173", "reference_id": "869173", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869173" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3369", "reference_id": "RHSA-2017:3369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-11334" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bbmg-x8h6-67e5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69422?format=api", "vulnerability_id": "VCID-bj4j-2yxz-pyeh", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15038.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15038.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08137", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08107", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08089", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07995", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07979", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16789", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16847", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16631", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16716", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1677", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1675", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16617", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:P/I:N/A:N" }, { "value": "3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg00729.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg00729.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/10/06/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/10/06/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1499110", "reference_id": "1499110", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1499110" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877890", "reference_id": "877890", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877890" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15038", "reference_id": "CVE-2017-15038", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:N/A:N" }, { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15038" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15038" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bj4j-2yxz-pyeh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50147?format=api", "vulnerability_id": "VCID-bq4s-ner8-9bew", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8309.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8309.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8309", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01768", "scoring_system": "epss", "scoring_elements": "0.8257", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01768", "scoring_system": "epss", "scoring_elements": "0.82585", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01768", "scoring_system": "epss", "scoring_elements": "0.826", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01768", "scoring_system": "epss", "scoring_elements": "0.82596", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01768", "scoring_system": "epss", "scoring_elements": "0.82622", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01768", "scoring_system": "epss", "scoring_elements": "0.8263", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01768", "scoring_system": "epss", "scoring_elements": "0.82648", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01768", "scoring_system": "epss", "scoring_elements": "0.82642", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01779", "scoring_system": "epss", "scoring_elements": "0.82733", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01779", "scoring_system": "epss", "scoring_elements": "0.82691", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01779", "scoring_system": "epss", "scoring_elements": "0.82729", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01779", "scoring_system": "epss", "scoring_elements": "0.8273", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8309" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446517", "reference_id": "1446517", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446517" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862280", "reference_id": "862280", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862280" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3289-1/", "reference_id": "USN-3289-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3289-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-8309" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bq4s-ner8-9bew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63621?format=api", "vulnerability_id": "VCID-c834-hdmj-cfe1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9374.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9374.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27706", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27533", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27744", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27575", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27643", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27685", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2769", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27589", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459132", "reference_id": "1459132", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459132" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864568", "reference_id": "864568", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864568" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9374" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c834-hdmj-cfe1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63737?format=api", "vulnerability_id": "VCID-chjc-4r36-y3f8", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11434.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11434.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07871", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07843", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07829", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07743", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07718", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16423", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16307", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16371", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16353", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16178", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16361", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16221", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:C" }, { "value": "8.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472611", "reference_id": "1472611", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472611" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869171", "reference_id": "869171", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869171" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-11434" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-chjc-4r36-y3f8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73623?format=api", "vulnerability_id": "VCID-cy79-xgar-eqgr", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00004.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00004.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00028.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00028.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00043.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00043.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18849.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18849.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14459", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14357", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14453", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14395", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14288", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14522", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14592", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14402", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14488", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14542", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1449", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LQIBTGNRDQEXGAAYHE4JIWFAYFNHZ6QP/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LQIBTGNRDQEXGAAYHE4JIWFAYFNHZ6QP/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg06401.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg06401.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20190411-0006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20190411-0006/" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/11/01/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/11/01/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644973", "reference_id": "1644973", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644973" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912535", "reference_id": "912535", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912535" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18849", "reference_id": "CVE-2018-18849", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18849" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-18849" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cy79-xgar-eqgr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79249?format=api", "vulnerability_id": "VCID-d6gd-j7ks-xkgk", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15890.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15890.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.6869", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68787", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68756", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68798", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68808", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68709", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68727", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68705", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68757", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68776", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68799", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68785", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html" }, { "reference_url": "https://seclists.org/bugtraq/2020/Feb/0", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Feb/0" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4616" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/09/06/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/09/06/3" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716", "reference_id": "1749716", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939868", "reference_id": "939868", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939868" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939869", "reference_id": "939869", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939869" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890", "reference_id": "CVE-2019-15890", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0348", "reference_id": "RHSA-2020:0348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4676", "reference_id": "RHSA-2020:4676", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4676" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-15890" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d6gd-j7ks-xkgk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56778?format=api", "vulnerability_id": "VCID-d8cd-qgg7-fyed", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16845.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16845.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83891", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83985", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.8397", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83964", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.8396", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83984", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83905", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83921", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83924", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83948", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83954", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:N/A:N" }, { "value": "3.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.securityfocus.com/bid/101923", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/101923" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1514148", "reference_id": "1514148", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1514148" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882136", "reference_id": "882136", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16845", "reference_id": "CVE-2017-16845", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:N/A:P" }, { "value": "10.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16845" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" }, { "reference_url": "https://usn.ubuntu.com/3649-1/", "reference_id": "USN-3649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-16845" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d8cd-qgg7-fyed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84851?format=api", "vulnerability_id": "VCID-dghq-fzs2-xfem", "summary": "Qemu: hw: dma: divide by zero error in set_next_tick", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8667.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8667.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8667", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22474", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22648", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22691", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22482", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22563", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22618", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22634", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22592", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22537", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22552", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22546", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22496", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8667" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8667", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8667" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:C" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1384874", "reference_id": "1384874", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1384874" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840950", "reference_id": "840950", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840950" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2016-8667" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dghq-fzs2-xfem" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73631?format=api", "vulnerability_id": "VCID-dgzy-z4ad-ubc4", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19489.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19489.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12168", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12285", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12332", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.1213", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12211", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12261", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12268", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.1223", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12193", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12081", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12083", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12196", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1653156", "reference_id": "1653156", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1653156" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914727", "reference_id": "914727", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914727" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-19489" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dgzy-z4ad-ubc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31106?format=api", "vulnerability_id": "VCID-e1j4-fhej-23hp", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could the worst of which could lead to arbitrary code execution, or\n cause a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2630.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2630.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2630", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78294", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78301", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78332", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78314", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.7834", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78346", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78373", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78355", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78348", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78377", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01134", "scoring_system": "epss", "scoring_elements": "0.78376", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2630" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2630", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2630" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1422415", "reference_id": "1422415", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1422415" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855227", "reference_id": "855227", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855227" }, { "reference_url": "https://security.gentoo.org/glsa/201704-01", "reference_id": "GLSA-201704-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-2630" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e1j4-fhej-23hp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56780?format=api", "vulnerability_id": "VCID-e3xt-vft1-kbbe", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18030.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18030.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18030", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.28947", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.29023", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.29072", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.28881", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.28949", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.28991", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.28995", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.28951", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.28901", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.28925", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00107", "scoring_system": "epss", "scoring_elements": "0.28855", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18030" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18030", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18030" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530360", "reference_id": "1530360", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530360" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-18030" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e3xt-vft1-kbbe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31108?format=api", "vulnerability_id": "VCID-ecu9-p9zb-dugs", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could the worst of which could lead to arbitrary code execution, or\n cause a Denial of Service condition.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=6e86d90352adf6cb08295255220295cf23c4286e", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=6e86d90352adf6cb08295255220295cf23c4286e" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5987.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5987.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5987", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20329", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20311", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20323", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20312", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20314", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20471", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20531", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20255", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20336", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20394", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20424", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20379", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5987" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5987", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5987" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg02776.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg02776.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/14/8", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/14/8" }, { "reference_url": "http://www.securityfocus.com/bid/96263", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/96263" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1421995", "reference_id": "1421995", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1421995" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855159", "reference_id": "855159", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855159" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5987", "reference_id": "CVE-2017-5987", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5987" }, { "reference_url": "https://security.gentoo.org/glsa/201704-01", "reference_id": "GLSA-201704-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-01" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-5987" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ecu9-p9zb-dugs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63623?format=api", "vulnerability_id": "VCID-ecy5-s73b-n3db", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10664.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10664.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89863", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89856", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89849", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.9085", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.9086", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90871", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90882", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90889", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90898", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90844", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1466190", "reference_id": "1466190", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1466190" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866674", "reference_id": "866674", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866674" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2390", "reference_id": "RHSA-2017:2390", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2390" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2445", "reference_id": "RHSA-2017:2445", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2445" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-10664" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ecy5-s73b-n3db" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31104?format=api", "vulnerability_id": "VCID-eu39-te5g-dyf9", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could the worst of which could lead to arbitrary code execution, or\n cause a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9602.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9602.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9602", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79692", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79773", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79747", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.7974", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79768", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79769", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79699", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.7972", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79705", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79734", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79741", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01302", "scoring_system": "epss", "scoring_elements": "0.79762", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9602" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9602" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-01/msg06225.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-01/msg06225.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg04347.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg04347.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/01/17/12", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/01/17/12" }, { "reference_url": "http://www.securityfocus.com/bid/95461", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/95461" }, { "reference_url": "http://www.securitytracker.com/id/1037604", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1037604" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1413929", "reference_id": "1413929", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1413929" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853006", "reference_id": "853006", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853006" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9602", "reference_id": "CVE-2016-9602", "reference_type": "", "scores": [ { "value": "9.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:S/C:C/I:C/A:C" }, { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9602" }, { "reference_url": "https://security.gentoo.org/glsa/201704-01", "reference_id": "GLSA-201704-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-01" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2016-9602" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eu39-te5g-dyf9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34657?format=api", "vulnerability_id": "VCID-ewsp-7ydm-5ub3", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13164.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13164.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.0556", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05392", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05503", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05538", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05537", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05575", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05598", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05571", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05559", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05552", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05501", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05468", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1722559", "reference_id": "1722559", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1722559" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931351", "reference_id": "931351", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931351" }, { "reference_url": "https://security.gentoo.org/glsa/202003-66", "reference_id": "GLSA-202003-66", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-66" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-13164" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ewsp-7ydm-5ub3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73373?format=api", "vulnerability_id": "VCID-f4w9-adpm-tuht", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17963.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17963.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81221", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81229", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81253", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81251", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81279", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81284", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81305", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81291", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81321", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81323", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81322", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636777", "reference_id": "1636777", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636777" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911469", "reference_id": "911469", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2166", "reference_id": "RHSA-2019:2166", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2166" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-17963" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f4w9-adpm-tuht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69423?format=api", "vulnerability_id": "VCID-fp83-zgum-ryb8", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15119.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15119.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81351", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81455", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81452", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81453", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.8136", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81382", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.8138", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81409", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81413", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81435", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81422", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81415", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516925", "reference_id": "1516925", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516925" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883399", "reference_id": "883399", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883399" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15119" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fp83-zgum-ryb8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61918?format=api", "vulnerability_id": "VCID-g3p8-5y7v-1ubk", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could cause a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7907.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7907.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7907", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29737", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29783", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.2983", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29645", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29708", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29744", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29747", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29702", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29651", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29668", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29646", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29601", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-7907" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7907", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1327206", "reference_id": "1327206", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1327206" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839986", "reference_id": "839986", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839986" }, { "reference_url": "https://security.gentoo.org/glsa/201611-11", "reference_id": "GLSA-201611-11", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201611-11" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2016-7907" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g3p8-5y7v-1ubk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31107?format=api", "vulnerability_id": "VCID-gagc-4hh8-hkhb", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could the worst of which could lead to arbitrary code execution, or\n cause a Denial of Service condition.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=f89b60f6e5fee3923bedf80e82b4e5efc1bb156b", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=f89b60f6e5fee3923bedf80e82b4e5efc1bb156b" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5973.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5973.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5973", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26386", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26224", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26279", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26285", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.2626", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26437", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26481", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26256", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26323", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26375", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26384", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26338", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5973" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5973", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5973" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg01101.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg01101.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/13/11", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/13/11" }, { "reference_url": "http://www.securityfocus.com/bid/96220", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/96220" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1421626", "reference_id": "1421626", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1421626" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855611", "reference_id": "855611", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855611" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5973", "reference_id": "CVE-2017-5973", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5973" }, { "reference_url": "https://security.gentoo.org/glsa/201704-01", "reference_id": "GLSA-201704-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-5973" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gagc-4hh8-hkhb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56779?format=api", "vulnerability_id": "VCID-gmvy-m5mq-yycx", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17381.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17381.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40072", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40127", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40243", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40205", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40187", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40235", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.4022", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40245", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40167", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40231", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-12/msg00166.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-12/msg00166.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/12/05/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/12/05/2" }, { "reference_url": "http://www.securityfocus.com/bid/102059", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102059" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1520782", "reference_id": "1520782", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1520782" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883625", "reference_id": "883625", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883625" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc0:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc0:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc0:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17381", "reference_id": "CVE-2017-17381", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17381" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-17381" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gmvy-m5mq-yycx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73626?format=api", "vulnerability_id": "VCID-gntc-n53u-n3aj", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18954.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18954.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30839", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30966", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.31013", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30831", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30889", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30919", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30879", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30834", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30865", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30845", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.3081", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526029", "reference_id": "1526029", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526029" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914604", "reference_id": "914604", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914604" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-18954" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gntc-n53u-n3aj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73629?format=api", "vulnerability_id": "VCID-hwt1-11ew-sqhv", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19364.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19364.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22557", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2273", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22774", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22564", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2264", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22692", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22709", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2267", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22612", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22627", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22624", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22576", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1643252", "reference_id": "1643252", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1643252" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914599", "reference_id": "914599", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914599" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-19364" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hwt1-11ew-sqhv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4091?format=api", "vulnerability_id": "VCID-j84y-1e8t-3ygv", "summary": "oob access in cirrus bitblt copy", "references": [ { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0309.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0309.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0328.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0328.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0329.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0329.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0330.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0330.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0331.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0331.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0332.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0332.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0333.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0333.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0334.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0334.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0344.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0344.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0350.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0350.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0396.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0396.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2017-0454.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://rhn.redhat.com/errata/RHSA-2017-0454.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2615.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2615.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2615", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.7704", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77134", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77106", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77101", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77141", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77143", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77046", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77075", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77056", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77088", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77098", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77126", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2615" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2615" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2615", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2615" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:P/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg00015.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg00015.html" }, { "reference_url": "https://support.citrix.com/article/CTX220771", "reference_id": "", "reference_type": "", "scores": [], "url": "https://support.citrix.com/article/CTX220771" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/01/6", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/01/6" }, { "reference_url": "http://www.securityfocus.com/bid/95990", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/95990" }, { "reference_url": "http://www.securitytracker.com/id/1037804", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1037804" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1418200", "reference_id": "1418200", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1418200" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854731", "reference_id": "854731", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854731" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:6.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:citrix:xenserver:6.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:6.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:6.2.0:sp1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:citrix:xenserver:6.2.0:sp1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:6.2.0:sp1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:6.5:sp1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:citrix:xenserver:6.5:sp1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:6.5:sp1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:citrix:xenserver:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:citrix:xenserver:7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:citrix:xenserver:7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.7.1:r1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.7.1:r1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.7.1:r1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.7.1:r2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.7.1:r2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.7.1:r2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.7.1:r3:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.7.1:r3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.7.1:r3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.7.1:r4:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.7.1:r4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.7.1:r4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2615", "reference_id": "CVE-2017-2615", "reference_type": "", "scores": [ { "value": "9.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:S/C:C/I:C/A:C" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" }, { "value": "9.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2615" }, { "reference_url": "https://security.gentoo.org/glsa/201702-27", "reference_id": "GLSA-201702-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-27" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0309", "reference_id": "RHSA-2017:0309", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0309" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0328", "reference_id": "RHSA-2017:0328", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0328" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0329", "reference_id": "RHSA-2017:0329", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0329" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0330", "reference_id": "RHSA-2017:0330", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0330" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0331", "reference_id": "RHSA-2017:0331", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0331" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0332", "reference_id": "RHSA-2017:0332", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0332" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0333", "reference_id": "RHSA-2017:0333", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0333" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0334", "reference_id": "RHSA-2017:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0344", "reference_id": "RHSA-2017:0344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0350", "reference_id": "RHSA-2017:0350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0396", "reference_id": "RHSA-2017:0396", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0396" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0454", "reference_id": "RHSA-2017:0454", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0454" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-208.html", "reference_id": "XSA-208", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-208.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-2615", "XSA-208" ], "risk_score": 4.1, "exploitability": "0.5", "weighted_severity": "8.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j84y-1e8t-3ygv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50145?format=api", "vulnerability_id": "VCID-jkk4-3w76-5kha", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=4ffcdef4277a91af15a3c09f7d16af072c29f3f2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=4ffcdef4277a91af15a3c09f7d16af072c29f3f2" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8086.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8086.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8086", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2275", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22782", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22814", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22827", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22821", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22922", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22966", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22759", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22833", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22887", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22907", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2287", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8086" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8086", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8086" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-04/msg01636.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-04/msg01636.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/04/25/5", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/04/25/5" }, { "reference_url": "http://www.securityfocus.com/bid/98012", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/98012" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1444781", "reference_id": "1444781", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1444781" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861348", "reference_id": "861348", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861348" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc0:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.9.0:rc3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.9.0:rc3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-8086", "reference_id": "CVE-2017-8086", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-8086" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3289-1/", "reference_id": "USN-3289-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3289-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-8086" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jkk4-3w76-5kha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56782?format=api", "vulnerability_id": "VCID-jnxy-g6wu-8ubu", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5683.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5683.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07573", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07682", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07714", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0774", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07759", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07758", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07744", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08167", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08117", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08025", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0801", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530356", "reference_id": "1530356", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530356" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=887392", "reference_id": "887392", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=887392" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2162", "reference_id": "RHSA-2018:2162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2162" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-5683" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jnxy-g6wu-8ubu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63735?format=api", "vulnerability_id": "VCID-km1b-1rvd-q3fa", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10806.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10806.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15393", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15344", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26336", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26389", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26431", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26206", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26273", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26321", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26328", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26282", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26223", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26228", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:N/I:N/A:C" }, { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1468496", "reference_id": "1468496", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1468496" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867751", "reference_id": "867751", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867751" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-10806" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-km1b-1rvd-q3fa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50144?format=api", "vulnerability_id": "VCID-m7uv-6346-8kbq", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7980.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7980.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7980", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37659", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.3773", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37811", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37791", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37841", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37866", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37745", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37796", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37809", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37823", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37788", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00166", "scoring_system": "epss", "scoring_elements": "0.37763", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7980" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7980", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7980" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:P/I:P/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1444371", "reference_id": "1444371", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1444371" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0980", "reference_id": "RHSA-2017:0980", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0980" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0981", "reference_id": "RHSA-2017:0981", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0981" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0982", "reference_id": "RHSA-2017:0982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0983", "reference_id": "RHSA-2017:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0984", "reference_id": "RHSA-2017:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0984" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:0988", "reference_id": "RHSA-2017:0988", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:0988" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1205", "reference_id": "RHSA-2017:1205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1206", "reference_id": "RHSA-2017:1206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1430", "reference_id": "RHSA-2017:1430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1441", "reference_id": "RHSA-2017:1441", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1441" }, { "reference_url": "https://usn.ubuntu.com/3289-1/", "reference_id": "USN-3289-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3289-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-7980" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m7uv-6346-8kbq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31111?format=api", "vulnerability_id": "VCID-mvy2-32gt-nbhg", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could the worst of which could lead to arbitrary code execution, or\n cause a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6505.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6505.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6505", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29535", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29602", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29651", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29472", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29573", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29575", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.2953", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.3081", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30834", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30865", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30845", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-6505" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6505", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6505" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1429432", "reference_id": "1429432", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1429432" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856969", "reference_id": "856969", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856969" }, { "reference_url": "https://security.gentoo.org/glsa/201704-01", "reference_id": "GLSA-201704-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-01" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-6505" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mvy2-32gt-nbhg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73636?format=api", "vulnerability_id": "VCID-mzsa-tcqf-effc", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-02/msg00073.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-02/msg00073.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6778.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6778.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22685", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22721", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22753", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22767", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22762", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22861", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22905", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22697", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22773", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22825", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22847", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2281", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg03132.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg03132.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/01/24/5", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/01/24/5" }, { "reference_url": "http://www.securityfocus.com/bid/106758", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106758" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1664205", "reference_id": "1664205", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1664205" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921525", "reference_id": "921525", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921525" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6778", "reference_id": "CVE-2019-6778", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6778" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1883", "reference_id": "RHSA-2019:1883", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1883" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1968", "reference_id": "RHSA-2019:1968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-6778" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mzsa-tcqf-effc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63886?format=api", "vulnerability_id": "VCID-p1bu-wmxq-27dm", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14167.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14167.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22568", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22661", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22604", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22619", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22616", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35705", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35731", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35612", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35658", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35682", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35691", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35504", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:N/I:P/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-09/msg01032.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-09/msg01032.html" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3991" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/09/07/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/09/07/2" }, { "reference_url": "http://www.securityfocus.com/bid/100694", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/100694" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489375", "reference_id": "1489375", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489375" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874606", "reference_id": "874606", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874606" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14167", "reference_id": "CVE-2017-14167", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3368", "reference_id": "RHSA-2017:3368", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3368" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3369", "reference_id": "RHSA-2017:3369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-14167" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p1bu-wmxq-27dm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63885?format=api", "vulnerability_id": "VCID-q49g-ggaf-cqbt", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13711.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13711.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01754", "scoring_system": "epss", "scoring_elements": "0.82619", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01754", "scoring_system": "epss", "scoring_elements": "0.82615", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86407", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86418", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86436", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86437", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86455", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86465", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86479", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86478", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86472", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86488", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486400", "reference_id": "1486400", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486400" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873875", "reference_id": "873875", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-13711" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q49g-ggaf-cqbt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48528?format=api", "vulnerability_id": "VCID-qtkd-pv6z-pkdf", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=a08aaff811fb194950f79711d2afe5a892ae03a4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=a08aaff811fb194950f79711d2afe5a892ae03a4" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5931.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5931.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5931", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.4468", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44739", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44816", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44809", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.4476", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44781", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.4472", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44773", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44775", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44792", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44761", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44763", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5931" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5931", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5931" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-01/msg01368.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-01/msg01368.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/08/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/08/2" }, { "reference_url": "http://www.securityfocus.com/bid/96141", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/96141" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1420092", "reference_id": "1420092", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1420092" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854730", "reference_id": "854730", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854730" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5931", "reference_id": "CVE-2017-5931", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5931" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-5931" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qtkd-pv6z-pkdf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/43771?format=api", "vulnerability_id": "VCID-rdgu-3kat-j7c6", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9824.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9824.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28427", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28501", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28544", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28339", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28405", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28447", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2845", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28408", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2835", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28361", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28293", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1678515", "reference_id": "1678515", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1678515" }, { "reference_url": "https://security.gentoo.org/glsa/201904-25", "reference_id": "GLSA-201904-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201904-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1650", "reference_id": "RHSA-2019:1650", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1650" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2078", "reference_id": "RHSA-2019:2078", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3345", "reference_id": "RHSA-2019:3345", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3345" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-9824" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rdgu-3kat-j7c6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56777?format=api", "vulnerability_id": "VCID-rkxf-jp2j-mqgf", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15124.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15124.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82133", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82242", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82217", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82209", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82204", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.8224", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82146", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82168", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82164", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.8219", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82198", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:N/I:N/A:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.securityfocus.com/bid/102295", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102295" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525195", "reference_id": "1525195", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525195" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884806", "reference_id": "884806", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884806" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15124", "reference_id": "CVE-2017-15124", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15124" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3062", "reference_id": "RHSA-2018:3062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3062" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15124" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rkxf-jp2j-mqgf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/76578?format=api", "vulnerability_id": "VCID-ruzy-eqc8-5ubs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14378.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14378.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.9111", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91116", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91124", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91131", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91144", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.9115", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91158", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91159", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91183", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91184", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91187", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14378" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745", "reference_id": "1734745", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933741", "reference_id": "933741", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933741" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933742", "reference_id": "933742", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933742" }, { "reference_url": "https://github.com/vishnudevtj/exploits/blob/bdbe2647969150c63ee3b34da5a2deb056e64f0b/qemu/CVE-2019-14378/exp.c", "reference_id": "CVE-2019-14378", "reference_type": "exploit", "scores": [], "url": "https://github.com/vishnudevtj/exploits/blob/bdbe2647969150c63ee3b34da5a2deb056e64f0b/qemu/CVE-2019-14378/exp.c" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47320.c", "reference_id": "CVE-2019-14378", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47320.c" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3179", "reference_id": "RHSA-2019:3179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3403", "reference_id": "RHSA-2019:3403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3494", "reference_id": "RHSA-2019:3494", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3494" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3742", "reference_id": "RHSA-2019:3742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3787", "reference_id": "RHSA-2019:3787", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3787" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3968", "reference_id": "RHSA-2019:3968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:4344", "reference_id": "RHSA-2019:4344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:4344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0366", "reference_id": "RHSA-2020:0366", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0366" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1216", "reference_id": "RHSA-2020:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2065", "reference_id": "RHSA-2020:2065", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2065" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2126", "reference_id": "RHSA-2020:2126", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2126" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-14378" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ruzy-eqc8-5ubs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56781?format=api", "vulnerability_id": "VCID-rxsw-t1ut-rkau", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18043.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18043.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32815", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32946", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32981", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32804", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32852", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32881", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32882", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32844", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32818", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3286", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32837", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32801", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1536377", "reference_id": "1536377", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1536377" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-18043" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rxsw-t1ut-rkau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48524?format=api", "vulnerability_id": "VCID-ssft-w1t3-9kc9", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=765a707000e838c30b18d712fe6cb3dd8e0435f3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=765a707000e838c30b18d712fe6cb3dd8e0435f3" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5856.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5856.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5856", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34282", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34511", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34525", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34564", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34549", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34621", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34647", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34516", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34558", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34587", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34589", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.3455", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5856" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5856", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5856" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/01/19", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/01/19" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/02/14", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/02/14" }, { "reference_url": "http://www.securityfocus.com/bid/95999", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/95999" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1418342", "reference_id": "1418342", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1418342" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853996", "reference_id": "853996", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853996" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5856", "reference_id": "CVE-2017-5856", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5856" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-5856" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ssft-w1t3-9kc9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73616?format=api", "vulnerability_id": "VCID-tsyt-eq3x-5ucy", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12617.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12617.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93389", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93406", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93422", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93423", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93442", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93447", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93397", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93405", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93413", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93417", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.11739", "scoring_system": "epss", "scoring_elements": "0.93722", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gist.github.com/fakhrizulkifli/c7740d28efa07dafee66d4da5d857ef6", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gist.github.com/fakhrizulkifli/c7740d28efa07dafee66d4da5d857ef6" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00041.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00041.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg03385.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg03385.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "https://www.exploit-db.com/exploits/44925/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.exploit-db.com/exploits/44925/" }, { "reference_url": "http://www.securityfocus.com/bid/104531", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/104531" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1594054", "reference_id": "1594054", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1594054" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902725", "reference_id": "902725", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902725" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44925.txt", "reference_id": "CVE-2018-12617", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44925.txt" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12617", "reference_id": "CVE-2018-12617", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12617" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-12617" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tsyt-eq3x-5ucy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56783?format=api", "vulnerability_id": "VCID-uryz-5yk9-9fd7", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7550.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7550.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24463", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24581", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24617", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24395", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24507", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24523", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24479", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24421", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24437", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24429", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24404", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1549798", "reference_id": "1549798", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1549798" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892041", "reference_id": "892041", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892041" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1369", "reference_id": "RHSA-2018:1369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1643", "reference_id": "RHSA-2018:1643", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1643" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1644", "reference_id": "RHSA-2018:1644", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1644" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1645", "reference_id": "RHSA-2018:1645", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1645" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1646", "reference_id": "RHSA-2018:1646", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1646" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2462", "reference_id": "RHSA-2018:2462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2462" }, { "reference_url": "https://usn.ubuntu.com/3649-1/", "reference_id": "USN-3649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-7550" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uryz-5yk9-9fd7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63620?format=api", "vulnerability_id": "VCID-v4eq-3kfm-uug9", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9373.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9373.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27706", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27533", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27744", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27575", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27643", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27685", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2769", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27589", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458270", "reference_id": "1458270", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458270" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864216", "reference_id": "864216", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9373" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v4eq-3kfm-uug9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4140?format=api", "vulnerability_id": "VCID-v8fp-rzfq-e3bs", "summary": "Information leak via side effects of speculative execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5715.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5715.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.88597", "scoring_system": "epss", "scoring_elements": "0.995", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.88597", "scoring_system": "epss", "scoring_elements": "0.99501", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.9953", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99529", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99533", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99534", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99534", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99539", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99533", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9016", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9016" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0861", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0861" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13220", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13220" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16912", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16912" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16913", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16913" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16914", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16914" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18017", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18017" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18193", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18193" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18203", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18203" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18216", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18216" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18218", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18218" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18222", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18222" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18224", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18224" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18241", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18241" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18257", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18257" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5753", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5753" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000004", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000004" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000199", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000199" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10471", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10471" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10472", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10472" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1065", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1065" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1066", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1066" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10981", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10981" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10982", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10982" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6927", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6927" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7492", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7492" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7757", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7757" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8087", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8087" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8822", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8822" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8897", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8897" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:N/A:N" }, { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securityfocus.com/bid/102376", "reference_id": "102376", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.securityfocus.com/bid/102376" }, { "reference_url": "http://www.securitytracker.com/id/1040071", "reference_id": "1040071", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.securitytracker.com/id/1040071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780", "reference_id": "1519780", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780" }, { "reference_url": "https://www.kb.cert.org/vuls/id/180049", "reference_id": "180049", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.kb.cert.org/vuls/id/180049" }, { "reference_url": "https://seclists.org/bugtraq/2019/Jun/36", "reference_id": "36", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://seclists.org/bugtraq/2019/Jun/36" }, { "reference_url": "https://www.exploit-db.com/exploits/43427/", "reference_id": "43427", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.exploit-db.com/exploits/43427/" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4609", "reference_id": "4609", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4609" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4611", "reference_id": "4611", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4611" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4613", "reference_id": "4613", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4613" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4614", "reference_id": "4614", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4614" }, { "reference_url": "http://www.kb.cert.org/vuls/id/584653", "reference_id": "584653", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.kb.cert.org/vuls/id/584653" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886532", "reference_id": "886532", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886532" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852", "reference_id": "886852", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852" }, { "reference_url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002", "reference_id": "ADV180002", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-254.html", "reference_id": "advisory-254.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-254.html" }, { "reference_url": "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr", "reference_id": "advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr" }, { "reference_url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-001.txt", "reference_id": "ARUBA-PSA-2018-001.txt", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-001.txt" }, { "reference_url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt", "reference_id": "ARUBA-PSA-2019-003.txt", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt" }, { "reference_url": "https://security.archlinux.org/ASA-201801-10", "reference_id": "ASA-201801-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-10" }, { "reference_url": "https://security.archlinux.org/AVG-557", "reference_id": "AVG-557", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-557" }, { "reference_url": "https://security.archlinux.org/AVG-558", "reference_id": "AVG-558", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-558" }, { "reference_url": "https://security.archlinux.org/AVG-559", "reference_id": "AVG-559", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-559" }, { "reference_url": "https://security.archlinux.org/AVG-582", "reference_id": "AVG-582", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-582" }, { "reference_url": "https://security.archlinux.org/AVG-583", "reference_id": "AVG-583", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-583" }, { "reference_url": "https://security.archlinux.org/AVG-987", "reference_id": "AVG-987", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-987" }, { "reference_url": "https://aws.amazon.com/de/security/security-bulletins/AWS-2018-013/", "reference_id": "AWS-2018-013", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://aws.amazon.com/de/security/security-bulletins/AWS-2018-013/" }, { "reference_url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel", "reference_id": "cisco-sa-20180104-cpusidechannel", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel" }, { "reference_url": "https://support.citrix.com/article/CTX231399", "reference_id": "CTX231399", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.citrix.com/article/CTX231399" }, { "reference_url": "https://security.paloaltonetworks.com/CVE-2017-5715", "reference_id": "CVE-2017-5715", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.paloaltonetworks.com/CVE-2017-5715" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/43427.c", "reference_id": "CVE-2017-5753;CVE-2017-5715", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/43427.c" }, { "reference_url": "https://spectreattack.com/spectre.pdf", "reference_id": "CVE-2017-5753;CVE-2017-5715", "reference_type": "exploit", "scores": [], "url": "https://spectreattack.com/spectre.pdf" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03805en_us", "reference_id": "display?docId=emr_na-hpesbhf03805en_us", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03805en_us" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us", "reference_id": "display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us" }, { "reference_url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:03.speculative_execution.asc", "reference_id": "FreeBSD-SA-18:03.speculative_execution.asc", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:03.speculative_execution.asc" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://support.f5.com/csp/article/K91229003", "reference_id": "K91229003", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.f5.com/csp/article/K91229003" }, { "reference_url": "https://support.lenovo.com/us/en/solutions/LEN-18282", "reference_id": "LEN-18282", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.lenovo.com/us/en/solutions/LEN-18282" }, { "reference_url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0001", "reference_id": "mitel-product-security-advisory-18-0001", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0001" }, { "reference_url": "https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/", "reference_id": "mitigations-landing-new-class-timing-attack", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00002.html", "reference_id": "msg00002.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00002.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00003.html", "reference_id": "msg00003.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00003.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00004.html", "reference_id": "msg00004.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00004.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00005.html", "reference_id": "msg00005.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00005.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00009.html", "reference_id": "msg00009.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00009.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00012.html", "reference_id": "msg00012.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00012.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00013.html", "reference_id": "msg00013.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00013.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00019.html", "reference_id": "msg00019.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00019.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00025.html", "reference_id": "msg00025.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00025.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20180104-0001/", "reference_id": "ntap-20180104-0001", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20180104-0001/" }, { "reference_url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html", "reference_id": "reading-privileged-memory-with-side.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0016", "reference_id": "RHSA-2018:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0017", "reference_id": "RHSA-2018:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0018", "reference_id": "RHSA-2018:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0020", "reference_id": "RHSA-2018:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0021", "reference_id": "RHSA-2018:0021", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0021" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0022", "reference_id": "RHSA-2018:0022", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0022" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0023", "reference_id": "RHSA-2018:0023", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0023" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0027", "reference_id": "RHSA-2018:0027", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0027" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0028", "reference_id": "RHSA-2018:0028", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0028" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0292", "reference_id": "RHSA-2018:0292", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:0292" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1062", "reference_id": "RHSA-2018:1062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1129", "reference_id": "RHSA-2018:1129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1130", "reference_id": "RHSA-2018:1130", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1130" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1196", "reference_id": "RHSA-2018:1196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1216", "reference_id": "RHSA-2018:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1252", "reference_id": "RHSA-2018:1252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1252" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1319", "reference_id": "RHSA-2018:1319", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1319" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1346", "reference_id": "RHSA-2018:1346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1967", "reference_id": "RHSA-2018:1967", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1967" }, { "reference_url": "https://spectreattack.com/", "reference_id": "spectreattack.com", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://spectreattack.com/" }, { "reference_url": "http://packetstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.html", "reference_id": "Spectre-Information-Disclosure-Proof-Of-Concept.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://packetstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.html" }, { "reference_url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution", "reference_id": "speculativeexecution", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution" }, { "reference_url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability", "reference_id": "speculative-processor-vulnerability", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf", "reference_id": "ssa-608355.pdf", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf" }, { "reference_url": "https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/", "reference_id": "suse-addresses-meltdown-spectre-vulnerabilities", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/" }, { "reference_url": "https://www.synology.com/support/security/Synology_SA_18_01", "reference_id": "Synology_SA_18_01", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.synology.com/support/security/Synology_SA_18_01" }, { "reference_url": "https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html", "reference_id": "todays-cpu-vulnerability-what-you-need.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html" }, { "reference_url": "https://usn.ubuntu.com/usn/usn-3516-1/", "reference_id": "usn-3516-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/usn/usn-3516-1/" }, { "reference_url": "https://usn.ubuntu.com/3516-1/", "reference_id": "USN-3516-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3516-1/" }, { "reference_url": "https://usn.ubuntu.com/3530-1/", "reference_id": "USN-3530-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3530-1/" }, { "reference_url": "https://usn.ubuntu.com/3531-1/", "reference_id": "USN-3531-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3531-1/" }, { "reference_url": "https://usn.ubuntu.com/3531-3/", "reference_id": "USN-3531-3", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3531-3/" }, { "reference_url": "https://usn.ubuntu.com/3540-1/", "reference_id": "USN-3540-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3540-1/" }, { "reference_url": "https://usn.ubuntu.com/3540-2/", "reference_id": "USN-3540-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3540-2/" }, { "reference_url": "https://usn.ubuntu.com/3541-1/", "reference_id": "USN-3541-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3541-1/" }, { "reference_url": "https://usn.ubuntu.com/3541-2/", "reference_id": "USN-3541-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3541-2/" }, { "reference_url": "https://usn.ubuntu.com/3542-1/", "reference_id": "USN-3542-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3542-1/" }, { "reference_url": "https://usn.ubuntu.com/3542-2/", "reference_id": "USN-3542-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3542-2/" }, { "reference_url": "https://usn.ubuntu.com/3549-1/", "reference_id": "USN-3549-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3549-1/" }, { "reference_url": "https://usn.ubuntu.com/3560-1/", "reference_id": "USN-3560-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3560-1/" }, { "reference_url": "https://usn.ubuntu.com/3561-1/", "reference_id": "USN-3561-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3561-1/" }, { "reference_url": "https://usn.ubuntu.com/3580-1/", "reference_id": "USN-3580-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3580-1/" }, { "reference_url": "https://usn.ubuntu.com/3581-1/", "reference_id": "USN-3581-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3581-1/" }, { "reference_url": "https://usn.ubuntu.com/3581-2/", "reference_id": "USN-3581-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3581-2/" }, { "reference_url": "https://usn.ubuntu.com/3582-1/", "reference_id": "USN-3582-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3582-1/" }, { "reference_url": "https://usn.ubuntu.com/3582-2/", "reference_id": "USN-3582-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3582-2/" }, { "reference_url": "https://usn.ubuntu.com/3594-1/", "reference_id": "USN-3594-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3594-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-1/", "reference_id": "USN-3597-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3597-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-2/", "reference_id": "USN-3597-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3597-2/" }, { "reference_url": "https://usn.ubuntu.com/3620-2/", "reference_id": "USN-3620-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3620-2/" }, { "reference_url": "https://usn.ubuntu.com/3690-1/", "reference_id": "USN-3690-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3690-1/" }, { "reference_url": "https://usn.ubuntu.com/3777-3/", "reference_id": "USN-3777-3", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3777-3/" }, { "reference_url": "https://cert.vde.com/en-us/advisories/vde-2018-002", "reference_id": "vde-2018-002", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert.vde.com/en-us/advisories/vde-2018-002" }, { "reference_url": "https://cert.vde.com/en-us/advisories/vde-2018-003", "reference_id": "vde-2018-003", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert.vde.com/en-us/advisories/vde-2018-003" }, { "reference_url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html", "reference_id": "VMSA-2018-0002.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html" }, { "reference_url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0004.html", "reference_id": "VMSA-2018-0004.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0004.html" }, { "reference_url": "https://www.vmware.com/security/advisories/VMSA-2018-0007.html", "reference_id": "VMSA-2018-0007.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/security/advisories/VMSA-2018-0007.html" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-254.html", "reference_id": "XSA-254", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-254.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-5715" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v8fp-rzfq-e3bs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50151?format=api", "vulnerability_id": "VCID-vefc-bfc3-fyg2", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9310.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9310.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26017", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26101", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.2614", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25974", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26026", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26036", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25991", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25932", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25937", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25919", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25889", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452620", "reference_id": "1452620", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452620" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863840", "reference_id": "863840", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863840" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9310" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vefc-bfc3-fyg2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69425?format=api", "vulnerability_id": "VCID-vxg6-nx6s-6feu", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15289.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15289.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08243", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08218", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.082", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08096", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08082", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0937", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13564", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1336", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13441", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1349", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13404", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13503", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02557.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02557.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/10/12/16", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/10/12/16" }, { "reference_url": "http://www.securityfocus.com/bid/101262", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/101262" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501290", "reference_id": "1501290", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501290" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880832", "reference_id": "880832", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880832" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15289", "reference_id": "CVE-2017-15289", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "6.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15289" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3368", "reference_id": "RHSA-2017:3368", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3368" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3369", "reference_id": "RHSA-2017:3369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0516", "reference_id": "RHSA-2018:0516", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0516" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15289" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vxg6-nx6s-6feu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50152?format=api", "vulnerability_id": "VCID-w1je-asqn-fbcr", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9330.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9330.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10501", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10493", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10563", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10427", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10568", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10597", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10565", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.164", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16438", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21443", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28348", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28337", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1457697", "reference_id": "1457697", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1457697" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863943", "reference_id": "863943", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863943" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9330" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w1je-asqn-fbcr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50148?format=api", "vulnerability_id": "VCID-wpuv-6mdx-j7gm", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8379.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8379.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8379", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34282", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34621", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34647", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34516", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34558", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34587", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34589", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.3455", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34525", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34564", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34549", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34511", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8379" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8379", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8379" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446547", "reference_id": "1446547", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446547" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862289", "reference_id": "862289", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862289" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3289-1/", "reference_id": "USN-3289-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3289-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-8379" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wpuv-6mdx-j7gm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48525?format=api", "vulnerability_id": "VCID-wqwh-zgp4-ske3", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=5e8e3c4c75c199aa1017db816fca02be2a9f8798", "reference_id": "", "reference_type": "", "scores": [], "url": "http://git.qemu-project.org/?p=qemu.git%3Ba=commit%3Bh=5e8e3c4c75c199aa1017db816fca02be2a9f8798" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5857.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5857.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5857", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34282", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34511", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34525", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34564", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34549", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34621", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34647", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34516", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34558", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34587", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34589", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.3455", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5857" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5857", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5857" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/01/21", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/01/21" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/02/02/16", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/02/02/16" }, { "reference_url": "http://www.securityfocus.com/bid/95993", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/95993" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1418382", "reference_id": "1418382", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1418382" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853996", "reference_id": "853996", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853996" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5857", "reference_id": "CVE-2017-5857", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-5857" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-5857" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wqwh-zgp4-ske3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73371?format=api", "vulnerability_id": "VCID-xzmg-gkxx-buau", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17962.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17962.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.4983", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49868", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49896", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49847", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49901", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49895", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49913", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49885", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49886", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49931", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49932", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49904", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636773", "reference_id": "1636773", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636773" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911468", "reference_id": "911468", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-17962" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xzmg-gkxx-buau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63883?format=api", "vulnerability_id": "VCID-y16a-n7u8-zfen", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9375.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9375.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27706", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27533", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27744", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27575", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27643", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27685", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2769", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27589", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9375" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458744", "reference_id": "1458744", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458744" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864219", "reference_id": "864219", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864219" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9375" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y16a-n7u8-zfen" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63884?format=api", "vulnerability_id": "VCID-yccx-a98b-nfh4", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12809.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12809.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20031", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20105", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20047", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20029", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20033", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25614", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25454", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25502", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25513", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25509", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25577", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25385", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483534", "reference_id": "1483534", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483534" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873849", "reference_id": "873849", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873849" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-12809" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yccx-a98b-nfh4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80234?format=api", "vulnerability_id": "VCID-z46a-96pz-f3hy", "summary": "regression update", "references": [], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "DSA-4454-2 qemu" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z46a-96pz-f3hy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73613?format=api", "vulnerability_id": "VCID-z4jn-dgcg-x7du", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11806.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11806.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.1568", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15672", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15719", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15783", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15587", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15731", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17036", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17159", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17099", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17041", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17076", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17206", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg01012.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg01012.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "https://www.zerodayinitiative.com/advisories/ZDI-18-567/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-567/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/06/07/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/06/07/1" }, { "reference_url": "http://www.securityfocus.com/bid/104400", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/104400" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1586245", "reference_id": "1586245", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1586245" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901017", "reference_id": "901017", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901017" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11806", "reference_id": "CVE-2018-11806", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" }, { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2462", "reference_id": "RHSA-2018:2462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2762", "reference_id": "RHSA-2018:2762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2762" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2822", "reference_id": "RHSA-2018:2822", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2887", "reference_id": "RHSA-2018:2887", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2887" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-11806" ], "risk_score": 3.7, "exploitability": "0.5", "weighted_severity": "7.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z4jn-dgcg-x7du" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73633?format=api", "vulnerability_id": "VCID-zjyq-3nyd-k3g9", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3812.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3812.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22199", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22196", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22303", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22244", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22248", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22243", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22357", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22401", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22187", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2227", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22324", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22344", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3812" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "http://www.securityfocus.com/bid/107059", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/107059" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1665792", "reference_id": "1665792", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1665792" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922635", "reference_id": "922635", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922635" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3812", "reference_id": "CVE-2019-3812", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:N/A:N" }, { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3812" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-3812" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zjyq-3nyd-k3g9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50149?format=api", "vulnerability_id": "VCID-zpw2-zh1y-ebb3", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8380.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8380.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8380", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86163", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86172", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86186", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86205", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86217", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86231", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86229", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86225", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86241", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86247", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02849", "scoring_system": "epss", "scoring_elements": "0.86239", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8380" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8380" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446577", "reference_id": "1446577", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446577" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862282", "reference_id": "862282", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862282" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" } ], "aliases": [ "CVE-2017-8380" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zpw2-zh1y-ebb3" } ], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }