Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/1037808?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "type": "deb", "namespace": "debian", "name": "xen", "version": "4.11.4+107-gef32c7afa2-1", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4255?format=api", "vulnerability_id": "VCID-1wgc-r96w-7kg9", "summary": "IRQ vector leak on x86", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3308", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18083", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.1823", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18381", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18435", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18139", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18223", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18277", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18279", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18233", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18181", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18126", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18138", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18172", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3308" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3308", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3308" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=981052", "reference_id": "981052", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=981052" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-360.html", "reference_id": "XSA-360", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-360.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-3308", "XSA-360" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1wgc-r96w-7kg9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4274?format=api", "vulnerability_id": "VCID-1wtd-67ef-1qej", "summary": "IOMMU page mapping issues on x86", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28695", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33263", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.3341", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.3355", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33583", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33422", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33466", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.335", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33504", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33462", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33439", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33475", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.3345", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33417", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-378.html", "reference_id": "XSA-378", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-378.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28695" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1wtd-67ef-1qej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4227?format=api", "vulnerability_id": "VCID-1x3w-n7ms-eqeh", "summary": "oxenstored memory leak in reset_watches", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19351", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19538", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19679", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19726", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19449", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19529", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19581", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19584", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19536", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19477", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19439", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19447", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19459", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-330.html", "reference_id": "XSA-330", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-330.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29485", "XSA-330" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1x3w-n7ms-eqeh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4261?format=api", "vulnerability_id": "VCID-28t2-hng7-tfe5", "summary": "missed flush in XSA-321 backport", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27379", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21363", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.215", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.2167", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21728", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21481", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21558", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21617", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21629", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21592", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21535", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21533", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.2154", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21509", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27379" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-366.html", "reference_id": "XSA-366", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-366.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-27379" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-28t2-hng7-tfe5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4259?format=api", "vulnerability_id": "VCID-2n9p-6t7s-kqc5", "summary": "arm: The cache may not be cleaned for newly allocated scrubbed pages", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26933", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23607", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23764", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23881", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23922", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23711", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23782", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23829", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23843", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23799", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23742", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23752", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2374", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23718", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379" }, { "reference_url": "https://security.archlinux.org/AVG-1587", "reference_id": "AVG-1587", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1587" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-364.html", "reference_id": "XSA-364", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-364.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-26933", "XSA-364" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2n9p-6t7s-kqc5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4325?format=api", "vulnerability_id": "VCID-2uap-2vm1-efcr", "summary": "Retbleed - arbitrary speculative code execution with return instructions", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-29900.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-29900.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-29900", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80477", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80584", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80527", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80545", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80531", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80523", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80553", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80554", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80558", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80498", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80488", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01411", "scoring_system": "epss", "scoring_elements": "0.80517", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-29900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2585", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2585" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2586", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2586" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2588", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2588" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29901", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29901" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36879", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36879" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36946" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090226", "reference_id": "2090226", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090226" }, { "reference_url": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1037", "reference_id": "amd-sb-1037", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T16:09:18Z/" } ], "url": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1037" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5207", "reference_id": "dsa-5207", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T16:09:18Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5207" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T16:09:18Z/" } ], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00011.html", "reference_id": "msg00011.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T16:09:18Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00011.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MYI3OMJ7RIZNL3C6GUWNANNPEUUID6FM/", "reference_id": "MYI3OMJ7RIZNL3C6GUWNANNPEUUID6FM", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T16:09:18Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MYI3OMJ7RIZNL3C6GUWNANNPEUUID6FM/" }, { "reference_url": "https://www.secpod.com/blog/retbleed-intel-and-amd-processor-information-disclosure-vulnerability/", "reference_id": "retbleed-intel-and-amd-processor-information-disclosure-vulnerability", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-20T16:09:18Z/" } ], "url": "https://www.secpod.com/blog/retbleed-intel-and-amd-processor-information-disclosure-vulnerability/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7110", "reference_id": "RHSA-2022:7110", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7110" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7134", "reference_id": "RHSA-2022:7134", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7134" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7337", "reference_id": "RHSA-2022:7337", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7337" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7338", "reference_id": "RHSA-2022:7338", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7338" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7933", "reference_id": "RHSA-2022:7933", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7933" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8267", "reference_id": "RHSA-2022:8267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8973", "reference_id": "RHSA-2022:8973", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8973" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8974", "reference_id": "RHSA-2022:8974", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8974" }, { "reference_url": "https://usn.ubuntu.com/5564-1/", "reference_id": "USN-5564-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5564-1/" }, { "reference_url": "https://usn.ubuntu.com/5565-1/", "reference_id": "USN-5565-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5565-1/" }, { "reference_url": "https://usn.ubuntu.com/5566-1/", "reference_id": "USN-5566-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5566-1/" }, { "reference_url": "https://usn.ubuntu.com/5854-1/", "reference_id": "USN-5854-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5854-1/" }, { "reference_url": "https://usn.ubuntu.com/5861-1/", "reference_id": "USN-5861-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5861-1/" }, { "reference_url": "https://usn.ubuntu.com/5862-1/", "reference_id": "USN-5862-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5862-1/" }, { "reference_url": "https://usn.ubuntu.com/5865-1/", "reference_id": "USN-5865-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5865-1/" }, { "reference_url": "https://usn.ubuntu.com/5883-1/", "reference_id": "USN-5883-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5883-1/" }, { "reference_url": "https://usn.ubuntu.com/5924-1/", "reference_id": "USN-5924-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5924-1/" }, { "reference_url": "https://usn.ubuntu.com/5975-1/", "reference_id": "USN-5975-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5975-1/" }, { "reference_url": "https://usn.ubuntu.com/6007-1/", "reference_id": "USN-6007-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6007-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-407.html", "reference_id": "XSA-407", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-407.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-29900" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2uap-2vm1-efcr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4267?format=api", "vulnerability_id": "VCID-32w3-vmcb-wfd9", "summary": "xen/arm: Boot modules are not scrubbed", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28693", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18606", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18781", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18919", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18972", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18698", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18778", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18832", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18837", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18791", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18738", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18688", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.187", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18719", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28693" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28693", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28693" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-372.html", "reference_id": "XSA-372", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-372.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28693", "XSA-372" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-32w3-vmcb-wfd9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4241?format=api", "vulnerability_id": "VCID-34gr-dtsz-1fab", "summary": "x86: Race condition in Xen mapping code", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27672.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27672.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11676", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11799", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11842", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11631", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11716", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11771", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11782", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11743", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11719", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11581", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11582", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11705", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11664", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891096", "reference_id": "1891096", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891096" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-345.html", "reference_id": "XSA-345", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-345.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-27672", "XSA-345" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-34gr-dtsz-1fab" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4222?format=api", "vulnerability_id": "VCID-34ng-ftbx-e3cm", "summary": "Xenstore: guests can let run xenstored out of memory", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24271", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24397", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36281", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36297", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36253", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36277", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36314", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36308", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36286", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36402", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36236", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36369", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "advisory-326.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T19:52:27Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-326.txt", "reference_id": "advisory-326.txt", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T19:52:27Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-326.txt" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5272", "reference_id": "dsa-5272", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T19:52:27Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5272" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "XSA-326", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/", "reference_id": "YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T19:52:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/", "reference_id": "YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T19:52:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/", "reference_id": "ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T19:52:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42317" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-34ng-ftbx-e3cm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4223?format=api", "vulnerability_id": "VCID-39t8-p1q7-eyag", "summary": "Xenstore: guests can let run xenstored out of memory", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24271", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24397", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36281", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36297", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36253", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36277", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36314", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36308", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36286", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36402", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36236", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36369", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "advisory-326.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T16:37:57Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-326.txt", "reference_id": "advisory-326.txt", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T16:37:57Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-326.txt" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5272", "reference_id": "dsa-5272", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T16:37:57Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5272" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "XSA-326", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/", "reference_id": "YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T16:37:57Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/", "reference_id": "YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T16:37:57Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/", "reference_id": "ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T16:37:57Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42318" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-39t8-p1q7-eyag" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4348?format=api", "vulnerability_id": "VCID-3d53-4qtr-myhm", "summary": "x86 shadow plus log-dirty mode use-after-free", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42332", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16081", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16018", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15878", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.1798", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18115", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18171", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18177", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.1813", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18081", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18024", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18037", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18071", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2023/03/21/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-03T15:13:24Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2023/03/21/1" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033297", "reference_id": "1033297", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033297" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/", "reference_id": "5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-03T15:13:24Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-427.html", "reference_id": "advisory-427.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-03T15:13:24Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-427.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-427.txt", "reference_id": "advisory-427.txt", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-03T15:13:24Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-427.txt" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/", "reference_id": "APBMS2Q6746AXAFAITNJMGBNFGNMVLWR", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-03T15:13:24Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5378", "reference_id": "dsa-5378", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-03T15:13:24Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5378" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-03T15:13:24Z/" } ], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-427.html", "reference_id": "XSA-427", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-427.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42332", "XSA-427" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3d53-4qtr-myhm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4214?format=api", "vulnerability_id": "VCID-3pxf-xndw-5fft", "summary": "Xenstore: guests can crash xenstored via watchs", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19652", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19798", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19943", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20001", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19728", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19808", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.1986", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.1987", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19825", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19768", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19742", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19744", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19756", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-324.html", "reference_id": "XSA-324", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-324.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29484", "XSA-324" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3pxf-xndw-5fft" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4233?format=api", "vulnerability_id": "VCID-3whm-8fyv-zyhd", "summary": "race when migrating timers between x86 HVM vCPU-s", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25604.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25604.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21783", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21948", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.22002", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21767", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21844", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.219", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21911", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21871", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21814", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21817", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21823", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21787", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21639", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25604" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877382", "reference_id": "1877382", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877382" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-336.html", "reference_id": "XSA-336", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-336.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25604", "XSA-336" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3whm-8fyv-zyhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4218?format=api", "vulnerability_id": "VCID-416b-93m6-jyby", "summary": "Xenstore: guests can let run xenstored out of memory", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.2457", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.24626", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.3659", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36545", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36569", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36603", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36596", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36577", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36688", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36525", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36656", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "advisory-326.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:57:08Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-326.txt", "reference_id": "advisory-326.txt", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:57:08Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-326.txt" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5272", "reference_id": "dsa-5272", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:57:08Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5272" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "XSA-326", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/", "reference_id": "YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:57:08Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/", "reference_id": "YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:57:08Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/", "reference_id": "ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:57:08Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42313" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-416b-93m6-jyby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4216?format=api", "vulnerability_id": "VCID-42ma-8ash-j7c8", "summary": "Xenstore: guests can let run xenstored out of memory", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24271", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24397", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36281", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36297", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36253", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36277", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36314", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36308", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36286", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36402", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36236", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36369", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "advisory-326.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T15:05:15Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-326.txt", "reference_id": "advisory-326.txt", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T15:05:15Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-326.txt" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5272", "reference_id": "dsa-5272", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T15:05:15Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5272" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "XSA-326", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/", "reference_id": "YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T15:05:15Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/", "reference_id": "YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T15:05:15Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/", "reference_id": "ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T15:05:15Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42311" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-42ma-8ash-j7c8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4320?format=api", "vulnerability_id": "VCID-4429-qf2w-jqg3", "summary": "x86: MMIO Stale Data vulnerabilities", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21166.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21166.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-21166", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40284", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40015", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40309", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40231", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40296", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40308", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.4027", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40251", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40298", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40266", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.4019", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-21166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4197", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4197" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0494", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0494" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0854", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0854" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1011" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1012", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1012" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1016", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1016" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1048", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1048" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1195", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1195" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1198", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1198" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1199", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1199" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1419", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1419" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1516", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1516" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1729", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1729" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1734", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1734" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1974", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1974" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21151", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21151" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2153", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2153" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26490", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26490" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27666", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27666" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28388", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28388" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28389", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28389" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28390", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28390" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32250", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32250" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32296", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32296" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33981", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33981" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2022/06/16/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2022/06/16/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090241", "reference_id": "2090241", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090241" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5173", "reference_id": "dsa-5173", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5173" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5178", "reference_id": "dsa-5178", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5178" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5184", "reference_id": "dsa-5184", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5184" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FHTEW3RXU2GW6S3RCPQG4VNCZGI3TOSV/", "reference_id": "FHTEW3RXU2GW6S3RCPQG4VNCZGI3TOSV", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FHTEW3RXU2GW6S3RCPQG4VNCZGI3TOSV/" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00615.html", "reference_id": "intel-sa-00615.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00615.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MCVOMHBQRH4KP7IN6U24CW7F2D2L5KBS/", "reference_id": "MCVOMHBQRH4KP7IN6U24CW7F2D2L5KBS", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MCVOMHBQRH4KP7IN6U24CW7F2D2L5KBS/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20220624-0008/", "reference_id": "ntap-20220624-0008", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20220624-0008/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5937", "reference_id": "RHSA-2022:5937", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5937" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5939", "reference_id": "RHSA-2022:5939", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5939" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6437", "reference_id": "RHSA-2022:6437", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6437" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6460", "reference_id": "RHSA-2022:6460", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6460" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6872", "reference_id": "RHSA-2022:6872", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6872" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6983", "reference_id": "RHSA-2022:6983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6991", "reference_id": "RHSA-2022:6991", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6991" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7279", "reference_id": "RHSA-2022:7279", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7279" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7280", "reference_id": "RHSA-2022:7280", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7280" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7933", "reference_id": "RHSA-2022:7933", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7933" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8267", "reference_id": "RHSA-2022:8267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8973", "reference_id": "RHSA-2022:8973", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8973" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8974", "reference_id": "RHSA-2022:8974", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8974" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RKRXZ4LHGCGMOG24ZCEJNY6R2BTS4S2Q/", "reference_id": "RKRXZ4LHGCGMOG24ZCEJNY6R2BTS4S2Q", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RKRXZ4LHGCGMOG24ZCEJNY6R2BTS4S2Q/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4P2KJYL74KGLHE4JZETVW7PZH6ZIABA/", "reference_id": "T4P2KJYL74KGLHE4JZETVW7PZH6ZIABA", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4P2KJYL74KGLHE4JZETVW7PZH6ZIABA/" }, { "reference_url": "https://usn.ubuntu.com/5484-1/", "reference_id": "USN-5484-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5484-1/" }, { "reference_url": "https://usn.ubuntu.com/5485-1/", "reference_id": "USN-5485-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5485-1/" }, { "reference_url": "https://usn.ubuntu.com/5485-2/", "reference_id": "USN-5485-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5485-2/" }, { "reference_url": "https://usn.ubuntu.com/5486-1/", "reference_id": "USN-5486-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5486-1/" }, { "reference_url": "https://usn.ubuntu.com/5505-1/", "reference_id": "USN-5505-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5505-1/" }, { "reference_url": "https://usn.ubuntu.com/5513-1/", "reference_id": "USN-5513-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5513-1/" }, { "reference_url": "https://usn.ubuntu.com/5529-1/", "reference_id": "USN-5529-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5529-1/" }, { "reference_url": "https://usn.ubuntu.com/5535-1/", "reference_id": "USN-5535-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5535-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-404.html", "reference_id": "XSA-404", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-404.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-21166", "XSA-404" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4429-qf2w-jqg3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4311?format=api", "vulnerability_id": "VCID-4spa-usqt-93b2", "summary": "x86 pv: Race condition in typeref acquisition", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14641", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14751", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14827", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1463", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1472", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14779", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14739", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14702", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14648", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1454", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14546", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1461", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014414", "reference_id": "1014414", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014414" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-401.html", "reference_id": "XSA-401", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-401.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-26362", "XSA-401" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4spa-usqt-93b2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4326?format=api", "vulnerability_id": "VCID-5cw7-rv5f-jfaq", "summary": "insufficient TLB flush for x86 PV guests in shadow mode", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20448", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20742", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20801", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20519", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20596", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20655", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20675", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20633", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20581", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20568", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20566", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20561", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-408.html", "reference_id": "XSA-408", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-408.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-33745", "XSA-408" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5cw7-rv5f-jfaq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4288?format=api", "vulnerability_id": "VCID-5dbd-kz24-6fc1", "summary": "issues with partially successful P2M updates on x86", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28709", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24654", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24807", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24885", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24925", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.247", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24767", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24813", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24827", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24787", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.2473", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24745", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24737", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24714", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-389.html", "reference_id": "XSA-389", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-389.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28709", "XSA-389" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5dbd-kz24-6fc1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4243?format=api", "vulnerability_id": "VCID-6kh6-edk7-xkcc", "summary": "unsafe AMD IOMMU page table updates", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27670.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27670.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13515", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13614", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13675", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13474", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13555", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13605", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13577", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13539", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13491", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13403", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.134", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13472", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13478", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891087", "reference_id": "1891087", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891087" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-347.html", "reference_id": "XSA-347", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-347.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-27670", "XSA-347" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6kh6-edk7-xkcc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4217?format=api", "vulnerability_id": "VCID-6xbp-t4qh-tbhv", "summary": "Xenstore: guests can let run xenstored out of memory", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.2457", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.24626", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.3659", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36545", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36569", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36603", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36596", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36577", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36688", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36525", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36656", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "advisory-326.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:59:33Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-326.txt", "reference_id": "advisory-326.txt", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:59:33Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-326.txt" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5272", "reference_id": "dsa-5272", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:59:33Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5272" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "XSA-326", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/", "reference_id": "YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:59:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/", "reference_id": "YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:59:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/", "reference_id": "ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:59:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42312", "XSA-326" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6xbp-t4qh-tbhv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4263?format=api", "vulnerability_id": "VCID-77st-3475-5kdr", "summary": "HVM soft-reset crashes toolstack", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28687", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13922", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13979", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14057", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14111", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13914", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13999", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14052", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14006", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13969", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1392", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13825", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13818", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13889", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28687" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28687", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28687" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-368.html", "reference_id": "XSA-368", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-368.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28687", "XSA-368" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-77st-3475-5kdr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4349?format=api", "vulnerability_id": "VCID-7d5b-66n7-zbe1", "summary": "x86/HVM pinned cache attributes mis-handling", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42333", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.61947", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.61946", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00421", "scoring_system": "epss", "scoring_elements": "0.61978", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66431", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66418", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66388", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66424", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.6644", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66426", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66449", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.66396", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0051", "scoring_system": "epss", "scoring_elements": "0.6641", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033297", "reference_id": "1033297", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033297" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-428.html", "reference_id": "XSA-428", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-428.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42333", "CVE-2022-43334", "XSA-428" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7d5b-66n7-zbe1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4342?format=api", "vulnerability_id": "VCID-7ek3-weqx-9fhs", "summary": "x86: Multiple speculative security issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23824.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23824.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23824", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10821", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.1263", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.12507", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.12621", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.14768", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.14913", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.14874", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.14838", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.14779", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.14892", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.14859", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.14967", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2119127", "reference_id": "2119127", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2119127" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-422.html", "reference_id": "XSA-422", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-422.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-23824", "XSA-422" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7ek3-weqx-9fhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4307?format=api", "vulnerability_id": "VCID-7etc-u5ya-zued", "summary": "IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31257", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31574", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31618", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31437", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.3149", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31519", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31523", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31481", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31444", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31479", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31457", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31426", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-400.html", "reference_id": "XSA-400", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-400.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-26358" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7etc-u5ya-zued" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4338?format=api", "vulnerability_id": "VCID-7t5h-jy8h-t3d4", "summary": "Xenstore: Cooperating guests can create arbitrary numbers of nodes", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09802", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09727", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09776", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09752", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11254", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11455", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11422", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11393", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11255", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12075", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12097", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-419.html", "reference_id": "XSA-419", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-419.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42323" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7t5h-jy8h-t3d4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4312?format=api", "vulnerability_id": "VCID-7wyt-uh2c-a3ha", "summary": "x86 pv: Insufficient care with non-coherent mappings", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26363", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.23968", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24264", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24298", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24084", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.2415", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24194", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24213", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24171", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24115", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.2413", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24117", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24093", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014414", "reference_id": "1014414", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014414" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-402.html", "reference_id": "XSA-402", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-402.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-26363" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7wyt-uh2c-a3ha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4350?format=api", "vulnerability_id": "VCID-7ysh-usku-c3dz", "summary": "x86/HVM pinned cache attributes mis-handling", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42334", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.1505", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15179", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15246", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18616", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18569", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18517", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18458", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18468", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.1849", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.1839", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18561", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18613", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033297", "reference_id": "1033297", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033297" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-428.html", "reference_id": "XSA-428", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-428.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42334" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7ysh-usku-c3dz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4221?format=api", "vulnerability_id": "VCID-7zpj-3par-s3b5", "summary": "Xenstore: guests can let run xenstored out of memory", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.2457", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.24626", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36688", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36525", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36577", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36596", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36569", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36545", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.3659", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36603", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36656", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "XSA-326", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-326.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42316" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7zpj-3par-s3b5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4219?format=api", "vulnerability_id": "VCID-87tq-2me2-d3bb", "summary": "Xenstore: guests can let run xenstored out of memory", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.2457", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.24626", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.3659", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36545", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36569", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36603", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36596", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36577", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36688", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36525", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36656", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "advisory-326.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:50:10Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-326.txt", "reference_id": "advisory-326.txt", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:50:10Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-326.txt" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5272", "reference_id": "dsa-5272", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:50:10Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5272" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "XSA-326", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/", "reference_id": "YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:50:10Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/", "reference_id": "YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:50:10Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/", "reference_id": "ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:50:10Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42314" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-87tq-2me2-d3bb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4332?format=api", "vulnerability_id": "VCID-8cb8-vq2c-q3e9", "summary": "Xenstore: Guests can crash xenstored", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16825", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16846", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16902", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16686", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16771", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18818", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18965", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18918", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18867", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18831", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19594", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19701", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-414.html", "reference_id": "XSA-414", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-414.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42309", "XSA-414" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8cb8-vq2c-q3e9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4249?format=api", "vulnerability_id": "VCID-8r8y-8bq2-jufj", "summary": "oxenstored: permissions not checked on root node", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14314", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14399", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14464", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.1427", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14353", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14408", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14358", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14317", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14262", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14153", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14151", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14224", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14252", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-353.html", "reference_id": "XSA-353", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-353.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29479", "XSA-353" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8r8y-8bq2-jufj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4329?format=api", "vulnerability_id": "VCID-91hk-73kq-83g6", "summary": "lock order inversion in transitive grant copy handling", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11646", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11778", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11821", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11609", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11693", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11748", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11761", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11723", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11699", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1156", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11563", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11686", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021668", "reference_id": "1021668", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021668" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-411.html", "reference_id": "XSA-411", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-411.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-33748", "XSA-411" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-91hk-73kq-83g6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4254?format=api", "vulnerability_id": "VCID-9hr5-p18q-7qb8", "summary": "FIFO event channels control structure ordering", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18173", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18342", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18494", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18548", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18256", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18339", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18391", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18343", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18291", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18235", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18247", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18275", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29571" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-359.html", "reference_id": "XSA-359", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-359.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29571", "XSA-359" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9hr5-p18q-7qb8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4283?format=api", "vulnerability_id": "VCID-9s43-gewn-bycc", "summary": "grant table v2 status pages may remain accessible after de-allocation (take two)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28703", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29143", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29363", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29433", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.2948", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29292", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29356", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29398", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29401", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29357", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29304", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29329", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29259", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28703" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28703", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28703" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-387.html", "reference_id": "XSA-387", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-387.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28703", "XSA-387" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9s43-gewn-bycc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4295?format=api", "vulnerability_id": "VCID-9zqd-3x84-43gc", "summary": "arm: guest_physmap_remove_page not removing the p2m mappings", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23033.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23033.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.26003", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.26045", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25817", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25887", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25938", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25948", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25906", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25852", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25856", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25838", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25808", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25751", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045043", "reference_id": "2045043", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045043" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-393.html", "reference_id": "XSA-393", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-393.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-23033", "XSA-393" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9zqd-3x84-43gc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4280?format=api", "vulnerability_id": "VCID-az8d-xrb4-3ug4", "summary": "Another race in XENMAPSPACE_grant_table handling", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28701", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.185", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18682", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18819", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18872", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18593", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18673", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18729", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18732", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18684", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18634", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18578", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18586", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18607", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28701" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-384.html", "reference_id": "XSA-384", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-384.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28701", "XSA-384" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-az8d-xrb4-3ug4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4310?format=api", "vulnerability_id": "VCID-b7tb-ns1t-fyaw", "summary": "IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31257", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31574", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31618", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31437", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.3149", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31519", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31523", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31481", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31444", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31479", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31457", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31426", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-400.html", "reference_id": "XSA-400", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-400.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-26361" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b7tb-ns1t-fyaw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4215?format=api", "vulnerability_id": "VCID-bc6f-wu8g-5yb4", "summary": "Xenstore: guests can disturb domain cleanup", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17414", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17518", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17681", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17727", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17447", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17538", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17597", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17615", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17568", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17516", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.1746", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17469", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17505", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-325.html", "reference_id": "XSA-325", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-325.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29483", "XSA-325" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bc6f-wu8g-5yb4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4236?format=api", "vulnerability_id": "VCID-bs56-1z79-uqbt", "summary": "x86 pv guest kernel DoS via SYSENTER", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25596.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25596.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24863", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24941", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24982", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24755", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24823", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24867", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24881", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24843", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24787", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24799", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24791", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24768", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24707", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880137", "reference_id": "1880137", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880137" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-339.html", "reference_id": "XSA-339", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-339.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25596", "XSA-339" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bs56-1z79-uqbt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4286?format=api", "vulnerability_id": "VCID-bxae-85uh-uyek", "summary": "PoD operations on misaligned GFNs", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28708", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24781", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24909", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24855", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24867", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.2486", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24838", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24929", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.25008", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.25047", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.2482", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24888", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24934", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24949", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28708" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-388.txt", "reference_id": "advisory-388.txt", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-388.txt" }, { "reference_url": "https://www.debian.org/security/2021/dsa-5017", "reference_id": "dsa-5017", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/" } ], "url": "https://www.debian.org/security/2021/dsa-5017" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/" } ], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/", "reference_id": "I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/", "reference_id": "PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-18T20:21:02Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-388.html", "reference_id": "XSA-388", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-388.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28708" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bxae-85uh-uyek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4220?format=api", "vulnerability_id": "VCID-bxb7-7gpw-qybb", "summary": "Xenstore: guests can let run xenstored out of memory", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.2457", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.24626", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.3659", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36545", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36569", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36603", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36596", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36577", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36688", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36525", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36656", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "advisory-326.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:49:24Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-326.txt", "reference_id": "advisory-326.txt", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:49:24Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-326.txt" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5272", "reference_id": "dsa-5272", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:49:24Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5272" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-326.html", "reference_id": "XSA-326", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-326.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/", "reference_id": "YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:49:24Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/", "reference_id": "YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:49:24Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/", "reference_id": "ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-06T14:49:24Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42315" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bxb7-7gpw-qybb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4230?format=api", "vulnerability_id": "VCID-bzve-5gwu-8ydb", "summary": "x86 pv: Crash when handling guest access to MSR_MISC_ENABLE", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25602.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25602.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23866", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23986", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.24025", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2381", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23877", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23923", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2394", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23896", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23841", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23853", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23842", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23822", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23704", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880158", "reference_id": "1880158", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880158" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-333.html", "reference_id": "XSA-333", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-333.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25602", "XSA-333" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bzve-5gwu-8ydb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4318?format=api", "vulnerability_id": "VCID-csy7-esn4-u3gq", "summary": "x86: MMIO Stale Data vulnerabilities", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21123.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21123.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-21123", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63685", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63755", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63711", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63671", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63723", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.6374", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63754", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63706", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63741", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63751", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.63739", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-21123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4197", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4197" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0494", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0494" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0854", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0854" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1011" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1012", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1012" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1016", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1016" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1048", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1048" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1195", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1195" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1198", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1198" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1199", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1199" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1419", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1419" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1516", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1516" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1729", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1729" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1734", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1734" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1974", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1974" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21151", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21151" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2153", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2153" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26490", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26490" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27666", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27666" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28388", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28388" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28389", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28389" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28390", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28390" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32250", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32250" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32296", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32296" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33981", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33981" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2022/06/16/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2022/06/16/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090237", "reference_id": "2090237", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090237" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5173", "reference_id": "dsa-5173", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5173" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5178", "reference_id": "dsa-5178", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5178" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5184", "reference_id": "dsa-5184", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5184" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FHTEW3RXU2GW6S3RCPQG4VNCZGI3TOSV/", "reference_id": "FHTEW3RXU2GW6S3RCPQG4VNCZGI3TOSV", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FHTEW3RXU2GW6S3RCPQG4VNCZGI3TOSV/" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00615.html", "reference_id": "intel-sa-00615.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00615.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MCVOMHBQRH4KP7IN6U24CW7F2D2L5KBS/", "reference_id": "MCVOMHBQRH4KP7IN6U24CW7F2D2L5KBS", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MCVOMHBQRH4KP7IN6U24CW7F2D2L5KBS/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20220624-0008/", "reference_id": "ntap-20220624-0008", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20220624-0008/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5937", "reference_id": "RHSA-2022:5937", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5937" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5939", "reference_id": "RHSA-2022:5939", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5939" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6437", "reference_id": "RHSA-2022:6437", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6437" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6460", "reference_id": "RHSA-2022:6460", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6460" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6872", "reference_id": "RHSA-2022:6872", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6872" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6983", "reference_id": "RHSA-2022:6983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6991", "reference_id": "RHSA-2022:6991", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6991" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7279", "reference_id": "RHSA-2022:7279", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7279" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7280", "reference_id": "RHSA-2022:7280", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7280" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7933", "reference_id": "RHSA-2022:7933", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7933" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8267", "reference_id": "RHSA-2022:8267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8973", "reference_id": "RHSA-2022:8973", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8973" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8974", "reference_id": "RHSA-2022:8974", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8974" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RKRXZ4LHGCGMOG24ZCEJNY6R2BTS4S2Q/", "reference_id": "RKRXZ4LHGCGMOG24ZCEJNY6R2BTS4S2Q", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RKRXZ4LHGCGMOG24ZCEJNY6R2BTS4S2Q/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4P2KJYL74KGLHE4JZETVW7PZH6ZIABA/", "reference_id": "T4P2KJYL74KGLHE4JZETVW7PZH6ZIABA", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4P2KJYL74KGLHE4JZETVW7PZH6ZIABA/" }, { "reference_url": "https://usn.ubuntu.com/5484-1/", "reference_id": "USN-5484-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5484-1/" }, { "reference_url": "https://usn.ubuntu.com/5485-1/", "reference_id": "USN-5485-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5485-1/" }, { "reference_url": "https://usn.ubuntu.com/5485-2/", "reference_id": "USN-5485-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5485-2/" }, { "reference_url": "https://usn.ubuntu.com/5486-1/", "reference_id": "USN-5486-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5486-1/" }, { "reference_url": "https://usn.ubuntu.com/5505-1/", "reference_id": "USN-5505-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5505-1/" }, { "reference_url": "https://usn.ubuntu.com/5513-1/", "reference_id": "USN-5513-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5513-1/" }, { "reference_url": "https://usn.ubuntu.com/5529-1/", "reference_id": "USN-5529-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5529-1/" }, { "reference_url": "https://usn.ubuntu.com/5535-1/", "reference_id": "USN-5535-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5535-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-404.html", "reference_id": "XSA-404", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-404.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-21123" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-csy7-esn4-u3gq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4248?format=api", "vulnerability_id": "VCID-d3ad-6tme-bfem", "summary": "oxenstored: node ownership can be changed by unprivileged clients", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18989", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19124", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19176", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18893", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18972", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19026", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19033", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18987", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18935", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18889", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18901", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18913", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18804", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-352.html", "reference_id": "XSA-352", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-352.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29486", "XSA-352" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d3ad-6tme-bfem" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4339?format=api", "vulnerability_id": "VCID-dfjm-gwzm-jqbt", "summary": "Oxenstored 32->31 bit integer truncation issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.1015", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10047", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10122", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10183", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10087", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11591", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11713", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11671", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1179", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11751", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11726", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11589", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-420.html", "reference_id": "XSA-420", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-420.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42324", "XSA-420" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dfjm-gwzm-jqbt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4335?format=api", "vulnerability_id": "VCID-dgm4-ye4m-1fcq", "summary": "Xenstore: Guests can get access to Xenstore nodes of deleted domains", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12428", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12384", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12359", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12308", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12229", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14067", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14108", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.13898", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.13907", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14013", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.1481", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.14774", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2022/11/01/7", "reference_id": "7", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T14:37:14Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2022/11/01/7" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-417.html", "reference_id": "advisory-417.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T14:37:14Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-417.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-417.txt", "reference_id": "advisory-417.txt", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T14:37:14Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-417.txt" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5272", "reference_id": "dsa-5272", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T14:37:14Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5272" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T14:37:14Z/" } ], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-417.html", "reference_id": "XSA-417", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-417.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/", "reference_id": "YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T14:37:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/", "reference_id": "YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T14:37:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/", "reference_id": "ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T14:37:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42320", "XSA-417" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dgm4-ye4m-1fcq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4305?format=api", "vulnerability_id": "VCID-dj1v-h79p-9ydz", "summary": "Racy interactions between dirty vram tracking and paging log dirty hypercalls", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.14982", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15105", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15172", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.14976", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15065", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15116", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15084", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15045", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.14985", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.14882", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.14889", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.14943", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-397.html", "reference_id": "XSA-397", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-397.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-26356", "XSA-397" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dj1v-h79p-9ydz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4240?format=api", "vulnerability_id": "VCID-dqy9-zkvw-e3gk", "summary": "lack of preemption in evtchn_reset() / evtchn_destroy()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25601.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22683", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22858", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22902", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22695", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22771", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22823", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22845", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22808", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22751", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22765", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22761", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2272", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22557", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877378", "reference_id": "1877378", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877378" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-344.html", "reference_id": "XSA-344", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-344.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25601", "XSA-344" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dqy9-zkvw-e3gk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4212?format=api", "vulnerability_id": "VCID-drhd-ytb7-u3em", "summary": "Xenstore: new domains inheriting existing node permissions", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20321", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20465", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20609", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20667", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20394", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20475", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20534", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20558", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20513", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20458", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.2045", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20446", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-322.html", "reference_id": "XSA-322", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-322.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29481", "XSA-322" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-drhd-ytb7-u3em" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4271?format=api", "vulnerability_id": "VCID-e96u-uwba-kfg5", "summary": "Speculative Code Store Bypass", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23106", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23281", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23324", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23112", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23186", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23237", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23259", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23222", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23163", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.2318", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23172", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23133", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.22958", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-375.html", "reference_id": "XSA-375", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-375.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-26313" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e96u-uwba-kfg5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4235?format=api", "vulnerability_id": "VCID-eb8v-p31a-yuhu", "summary": "once valid event channels may not turn invalid", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29184", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.2926", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.2931", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29122", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29187", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29227", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29233", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29186", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29134", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.2916", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29137", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29088", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.28968", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879553", "reference_id": "1879553", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879553" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-338.html", "reference_id": "XSA-338", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-338.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25597", "XSA-338" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eb8v-p31a-yuhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4242?format=api", "vulnerability_id": "VCID-eka3-u8e5-3uad", "summary": "undue deferral of IOMMU TLB flushes", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27671.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27671.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21789", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21954", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.22007", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21772", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21849", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21905", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21916", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21876", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21819", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21821", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21828", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21791", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21643", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891091", "reference_id": "1891091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891091" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-346.html", "reference_id": "XSA-346", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-346.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-27671", "XSA-346" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eka3-u8e5-3uad" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4234?format=api", "vulnerability_id": "VCID-ep7n-um5m-ekgk", "summary": "PCI passthrough code reading back hardware registers", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25165", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25245", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25284", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25056", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25126", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25171", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25184", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25141", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25089", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.251", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25091", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25062", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25002", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877369", "reference_id": "1877369", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877369" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-337.html", "reference_id": "XSA-337", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-337.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25595", "XSA-337" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ep7n-um5m-ekgk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4284?format=api", "vulnerability_id": "VCID-fekb-fbhz-y7g7", "summary": "PoD operations on misaligned GFNs", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28704", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24654", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24807", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24885", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24925", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.247", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24767", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24813", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24827", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24787", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.2473", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24745", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24737", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24714", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28704" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-388.html", "reference_id": "XSA-388", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-388.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28704", "XSA-388" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fekb-fbhz-y7g7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4327?format=api", "vulnerability_id": "VCID-fhbs-3nvf-tbha", "summary": "Arm: unbounded memory consumption for 2nd-level page tables", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08339", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08391", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08312", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08376", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08392", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08384", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08365", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08349", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08242", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08227", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08388", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0836", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021668", "reference_id": "1021668", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021668" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-409.html", "reference_id": "XSA-409", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-409.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-33747", "XSA-409" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fhbs-3nvf-tbha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4282?format=api", "vulnerability_id": "VCID-fqt9-2esb-ffan", "summary": "PCI devices with RMRRs not deassigned correctly", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28702", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16617", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16834", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16789", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1673", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16666", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16674", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16711", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22583", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22508", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22541", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22374", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22371", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22453", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-386.html", "reference_id": "XSA-386", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-386.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28702", "XSA-386" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fqt9-2esb-ffan" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4279?format=api", "vulnerability_id": "VCID-g72t-7kx1-abcs", "summary": "xen/arm: No memory limit for dom0less domUs", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28700", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84211", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.8409", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84103", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84121", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84122", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84145", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84151", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84168", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84163", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84158", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84181", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84182", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02126", "scoring_system": "epss", "scoring_elements": "0.84186", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-383.html", "reference_id": "XSA-383", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-383.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28700", "XSA-383" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g72t-7kx1-abcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4287?format=api", "vulnerability_id": "VCID-gdsj-4cbx-ufep", "summary": "issues with partially successful P2M updates on x86", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28705", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.29944", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30158", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30195", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30243", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30063", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30122", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30161", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30119", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30069", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30082", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.3006", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30014", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28705" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-389.html", "reference_id": "XSA-389", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-389.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28705" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gdsj-4cbx-ufep" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4333?format=api", "vulnerability_id": "VCID-gj1u-mbaj-kyc5", "summary": "Xenstore: Guests can create orphaned Xenstore nodes", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06106", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06008", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06043", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06028", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06067", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07039", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07124", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07114", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07103", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07023", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07528", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07566", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-415.html", "reference_id": "XSA-415", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-415.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42310", "XSA-415" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gj1u-mbaj-kyc5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4252?format=api", "vulnerability_id": "VCID-h9c6-yw5r-v3ex", "summary": "infinite loop when cleaning up IRQ vectors", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29567", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17091", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17159", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17324", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17373", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17152", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17243", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17301", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17315", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17265", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17206", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17145", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17151", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17186", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29567" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29567" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-356.html", "reference_id": "XSA-356", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-356.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29567", "XSA-356" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h9c6-yw5r-v3ex" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4313?format=api", "vulnerability_id": "VCID-hg4z-ad3f-fbc2", "summary": "x86 pv: Insufficient care with non-coherent mappings", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28936", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29219", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29272", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29086", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29149", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29191", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29197", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29151", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29099", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29125", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29101", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29054", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014414", "reference_id": "1014414", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014414" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-402.html", "reference_id": "XSA-402", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-402.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-26364", "XSA-402" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hg4z-ad3f-fbc2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4334?format=api", "vulnerability_id": "VCID-hsau-swt9-kyf7", "summary": "Xenstore: Guests can cause Xenstore to not free temporary memory", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06792", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06679", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06724", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06708", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06759", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07834", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07948", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07931", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07918", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07818", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08393", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08423", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-416.html", "reference_id": "XSA-416", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-416.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42319", "XSA-416" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hsau-swt9-kyf7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4308?format=api", "vulnerability_id": "VCID-hx7j-eymk-4ygk", "summary": "IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31257", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31574", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31618", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31437", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.3149", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31519", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31523", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31481", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31444", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31479", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31457", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31426", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-400.html", "reference_id": "XSA-400", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-400.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-26359" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hx7j-eymk-4ygk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4272?format=api", "vulnerability_id": "VCID-hyup-47wa-pfac", "summary": "x86: TSX Async Abort protections not restored after S3", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57968", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57887", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57971", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.5799", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57966", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58022", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58024", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58041", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58019", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57999", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58029", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58028", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58005", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-377.html", "reference_id": "XSA-377", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-377.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28690", "XSA-377" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hyup-47wa-pfac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4306?format=api", "vulnerability_id": "VCID-jwdv-qe4x-yfgw", "summary": "race in VT-d domain ID cleanup", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.0517", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05011", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05039", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05061", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05094", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05109", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05083", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05066", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05049", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04991", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.04997", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00019", "scoring_system": "epss", "scoring_elements": "0.05143", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-399.html", "reference_id": "XSA-399", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-399.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-26357", "XSA-399" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jwdv-qe4x-yfgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4244?format=api", "vulnerability_id": "VCID-k5j4-3xmv-a7bk", "summary": "undue recursion in x86 HVM context switch code", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21446", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21589", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21761", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21816", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21567", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21644", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21702", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21713", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21674", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21617", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21616", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21624", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21593", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-348.html", "reference_id": "XSA-348", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-348.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29566", "XSA-348" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k5j4-3xmv-a7bk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4275?format=api", "vulnerability_id": "VCID-kcj6-ua4t-ybgj", "summary": "IOMMU page mapping issues on x86", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28696", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25785", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25974", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.26057", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.26099", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25866", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25936", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25988", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25998", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25954", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25894", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25897", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25879", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00092", "scoring_system": "epss", "scoring_elements": "0.25848", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-378.html", "reference_id": "XSA-378", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-378.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28696" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kcj6-ua4t-ybgj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4270?format=api", "vulnerability_id": "VCID-knqd-zktw-cydm", "summary": "Speculative Code Store Bypass", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17717", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1783", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17992", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18046", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17746", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17834", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17896", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17912", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17867", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17818", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1776", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1777", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17808", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-375.html", "reference_id": "XSA-375", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-375.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-0089", "XSA-375" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-knqd-zktw-cydm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4351?format=api", "vulnerability_id": "VCID-mcs2-ndqd-tydv", "summary": "x86: speculative vulnerability in 32bit SYSCALL path", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42331", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14119", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14247", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14308", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.1757", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17523", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17471", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17413", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17423", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17458", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17371", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17497", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17557", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42331" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42331" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42334" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033297", "reference_id": "1033297", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033297" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-429.html", "reference_id": "XSA-429", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-429.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42331", "XSA-429" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mcs2-ndqd-tydv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4276?format=api", "vulnerability_id": "VCID-mf8g-nbkw-f7gr", "summary": "grant table v2 status pages may remain accessible after de-allocation", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28697", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18286", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18458", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18603", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18658", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18367", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18449", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18502", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18503", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18455", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18404", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18348", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.1836", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18386", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-379.html", "reference_id": "XSA-379", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-379.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28697", "XSA-379" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mf8g-nbkw-f7gr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4251?format=api", "vulnerability_id": "VCID-n3t2-m6br-ufb3", "summary": "stack corruption from XSA-346 change", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29040.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29040.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29040", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20135", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20282", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.2034", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20064", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20145", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20202", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20227", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20182", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20124", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20117", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20121", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20004", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29040" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29040", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29040" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902766", "reference_id": "1902766", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902766" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976109", "reference_id": "976109", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976109" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-355.html", "reference_id": "XSA-355", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-355.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29040", "XSA-355" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n3t2-m6br-ufb3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4268?format=api", "vulnerability_id": "VCID-n7pg-b7kc-wkew", "summary": "inappropriate x86 IOMMU timeout detection / handling", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10576", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10461", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10604", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10666", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1053", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10603", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10662", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10675", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10643", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10619", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10484", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10502", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10627", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28692" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-373.html", "reference_id": "XSA-373", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-373.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28692", "XSA-373" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n7pg-b7kc-wkew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4253?format=api", "vulnerability_id": "VCID-ndz3-372h-8fhk", "summary": "FIFO event channels control block related ordering", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18568", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18744", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.1888", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18933", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18656", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18736", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18789", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18794", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18747", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18697", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18646", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18657", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18676", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-358.html", "reference_id": "XSA-358", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-358.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29570", "XSA-358" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ndz3-372h-8fhk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3999?format=api", "vulnerability_id": "VCID-p3uc-18e9-skb4", "summary": "xenstore watch notifications lacking permission checks", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19055", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19246", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19381", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19432", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19149", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19229", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19281", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19286", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19239", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19185", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19145", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19155", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19164", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-115.html", "reference_id": "XSA-115", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-115.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29480", "XSA-115" ], "risk_score": 0.9, "exploitability": "0.5", "weighted_severity": "1.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p3uc-18e9-skb4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4238?format=api", "vulnerability_id": "VCID-p7ug-wwk5-63gb", "summary": "out of bounds event channels available to 32-bit x86 domains", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25600.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25600.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27816", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27866", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27906", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27698", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27766", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27808", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27814", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27772", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27715", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27723", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27697", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27658", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27605", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880156", "reference_id": "1880156", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880156" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-342.html", "reference_id": "XSA-342", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-342.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25600", "XSA-342" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p7ug-wwk5-63gb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4328?format=api", "vulnerability_id": "VCID-pb8n-hmsc-syfw", "summary": "P2M pool freeing may take excessively long", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11732", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11867", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11912", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11698", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11782", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11835", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11845", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11806", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11779", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11643", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11764", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021668", "reference_id": "1021668", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021668" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-410.html", "reference_id": "XSA-410", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-410.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-33746", "XSA-410" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pb8n-hmsc-syfw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4337?format=api", "vulnerability_id": "VCID-pphm-ygb7-q7g2", "summary": "Xenstore: Cooperating guests can create arbitrary numbers of nodes", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09802", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09727", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09776", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09752", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11254", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11455", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11422", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11393", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11255", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12075", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12097", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-419.html", "reference_id": "XSA-419", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-419.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42322", "XSA-419" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pphm-ygb7-q7g2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4172?format=api", "vulnerability_id": "VCID-pzt3-abab-4kdd", "summary": "x86 PV guest INVLPG-like flushes may leave stale TLB entries", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27674.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27674.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22151", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22309", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22352", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22137", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2222", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22274", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22294", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22252", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22193", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22194", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22188", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22142", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22002", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891089", "reference_id": "1891089", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891089" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-286.html", "reference_id": "XSA-286", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-286.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-27674", "XSA-286" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pzt3-abab-4kdd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4336?format=api", "vulnerability_id": "VCID-qnew-xqte-kbej", "summary": "Xenstore: Guests can crash xenstored via exhausting the stack", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.084", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08345", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08398", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0832", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08383", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09504", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09661", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09629", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09613", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09509", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10241", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10261", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-418.html", "reference_id": "XSA-418", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-418.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42321", "XSA-418" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qnew-xqte-kbej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4273?format=api", "vulnerability_id": "VCID-qprv-989b-k3d3", "summary": "IOMMU page mapping issues on x86", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28694", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33234", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.3338", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33516", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33549", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.3339", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33435", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33469", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33472", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33431", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33407", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33444", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33419", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00136", "scoring_system": "epss", "scoring_elements": "0.33388", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28694" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-378.html", "reference_id": "XSA-378", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-378.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28694", "XSA-378" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qprv-989b-k3d3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4278?format=api", "vulnerability_id": "VCID-s4nf-p69f-pue8", "summary": "inadequate grant-v2 status frames array bounds check", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28699", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22263", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22396", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22563", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22606", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22393", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22475", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22529", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22548", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22507", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22452", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22468", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22465", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22415", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-382.html", "reference_id": "XSA-382", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-382.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28699", "XSA-382" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s4nf-p69f-pue8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4319?format=api", "vulnerability_id": "VCID-td6e-x2qb-syg3", "summary": "x86: MMIO Stale Data vulnerabilities", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21125.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-21125.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-21125", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47421", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47447", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47466", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47443", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47446", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47441", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00242", "scoring_system": "epss", "scoring_elements": "0.47391", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00536", "scoring_system": "epss", "scoring_elements": "0.67507", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00536", "scoring_system": "epss", "scoring_elements": "0.67499", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00536", "scoring_system": "epss", "scoring_elements": "0.67511", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00536", "scoring_system": "epss", "scoring_elements": "0.67488", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-21125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4197", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4197" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0494", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0494" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0854", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0854" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1011" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1012", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1012" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1016", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1016" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1048", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1048" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1195", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1195" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1198", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1198" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1199", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1199" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1419", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1419" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1516", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1516" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1729", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1729" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1734", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1734" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1974", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1974" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21151", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21151" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2153", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2153" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23960" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26490", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26490" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27666", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27666" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28388", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28388" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28389", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28389" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28390", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28390" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32250", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32250" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32296", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32296" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33981", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33981" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2022/06/16/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2022/06/16/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090240", "reference_id": "2090240", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2090240" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-404.html", "reference_id": "advisory-404.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-404.html" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5173", "reference_id": "dsa-5173", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5173" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5178", "reference_id": "dsa-5178", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5178" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5184", "reference_id": "dsa-5184", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5184" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FHTEW3RXU2GW6S3RCPQG4VNCZGI3TOSV/", "reference_id": "FHTEW3RXU2GW6S3RCPQG4VNCZGI3TOSV", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FHTEW3RXU2GW6S3RCPQG4VNCZGI3TOSV/" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00615.html", "reference_id": "intel-sa-00615.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00615.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MCVOMHBQRH4KP7IN6U24CW7F2D2L5KBS/", "reference_id": "MCVOMHBQRH4KP7IN6U24CW7F2D2L5KBS", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MCVOMHBQRH4KP7IN6U24CW7F2D2L5KBS/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20220624-0008/", "reference_id": "ntap-20220624-0008", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20220624-0008/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5937", "reference_id": "RHSA-2022:5937", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5937" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5939", "reference_id": "RHSA-2022:5939", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5939" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6437", "reference_id": "RHSA-2022:6437", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6437" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6460", "reference_id": "RHSA-2022:6460", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6460" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6872", "reference_id": "RHSA-2022:6872", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6872" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6983", "reference_id": "RHSA-2022:6983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6991", "reference_id": "RHSA-2022:6991", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6991" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7279", "reference_id": "RHSA-2022:7279", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7279" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7280", "reference_id": "RHSA-2022:7280", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7280" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7933", "reference_id": "RHSA-2022:7933", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7933" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8267", "reference_id": "RHSA-2022:8267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8973", "reference_id": "RHSA-2022:8973", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8973" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8974", "reference_id": "RHSA-2022:8974", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8974" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RKRXZ4LHGCGMOG24ZCEJNY6R2BTS4S2Q/", "reference_id": "RKRXZ4LHGCGMOG24ZCEJNY6R2BTS4S2Q", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RKRXZ4LHGCGMOG24ZCEJNY6R2BTS4S2Q/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4P2KJYL74KGLHE4JZETVW7PZH6ZIABA/", "reference_id": "T4P2KJYL74KGLHE4JZETVW7PZH6ZIABA", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:20:40Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4P2KJYL74KGLHE4JZETVW7PZH6ZIABA/" }, { "reference_url": "https://usn.ubuntu.com/5484-1/", "reference_id": "USN-5484-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5484-1/" }, { "reference_url": "https://usn.ubuntu.com/5485-1/", "reference_id": "USN-5485-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5485-1/" }, { "reference_url": "https://usn.ubuntu.com/5485-2/", "reference_id": "USN-5485-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5485-2/" }, { "reference_url": "https://usn.ubuntu.com/5505-1/", "reference_id": "USN-5505-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5505-1/" }, { "reference_url": "https://usn.ubuntu.com/5513-1/", "reference_id": "USN-5513-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5513-1/" }, { "reference_url": "https://usn.ubuntu.com/5529-1/", "reference_id": "USN-5529-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5529-1/" }, { "reference_url": "https://usn.ubuntu.com/5535-1/", "reference_id": "USN-5535-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5535-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-404.html", "reference_id": "XSA-404", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-404.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-21125" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-td6e-x2qb-syg3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4277?format=api", "vulnerability_id": "VCID-uunr-69dt-q7fn", "summary": "long running loops in grant table handling", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28698", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17392", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.175", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17663", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17709", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17429", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17522", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17582", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17596", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17549", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17497", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.1744", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17449", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17483", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28698" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28694" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28695" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28696" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28697" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28698" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28700" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28701" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-380.html", "reference_id": "XSA-380", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-380.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28698", "XSA-380" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uunr-69dt-q7fn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4213?format=api", "vulnerability_id": "VCID-uvcp-ad38-2kcs", "summary": "Xenstore: wrong path length check", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19812", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19953", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20099", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20157", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19886", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19965", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20019", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20038", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19993", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19936", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19919", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19923", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.1992", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-323.html", "reference_id": "XSA-323", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-323.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29482", "XSA-323" ], "risk_score": 0.9, "exploitability": "0.5", "weighted_severity": "1.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uvcp-ad38-2kcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4237?format=api", "vulnerability_id": "VCID-vb2u-yc2z-ayh5", "summary": "Missing memory barriers when accessing/allocating an event channel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25603.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25603.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21923", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22085", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22135", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21911", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21992", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22047", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22062", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22021", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21961", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.2196", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21956", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21913", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21767", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877366", "reference_id": "1877366", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877366" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-340.html", "reference_id": "XSA-340", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-340.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25603", "XSA-340" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vb2u-yc2z-ayh5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4296?format=api", "vulnerability_id": "VCID-vs9k-akwv-h3ak", "summary": "A PV guest could DoS Xen while unmapping a grant", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23034.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23034.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28729", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28776", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28584", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28649", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28689", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28691", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.286", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28619", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28594", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28545", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00105", "scoring_system": "epss", "scoring_elements": "0.28429", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045041", "reference_id": "2045041", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045041" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-394.html", "reference_id": "XSA-394", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-394.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-23034", "XSA-394" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vs9k-akwv-h3ak" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4297?format=api", "vulnerability_id": "VCID-w2ch-guy5-6ye9", "summary": "Insufficient cleanup of passed-through device IRQs", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23035.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23035.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30255", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30304", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.3012", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.3018", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30215", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30218", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30175", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30128", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30143", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30125", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30079", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30009", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045039", "reference_id": "2045039", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2045039" }, { "reference_url": "https://security.gentoo.org/glsa/202208-23", "reference_id": "GLSA-202208-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-23" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-395.html", "reference_id": "XSA-395", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-395.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-23035", "XSA-395" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w2ch-guy5-6ye9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4340?format=api", "vulnerability_id": "VCID-wh75-sc4f-qqc1", "summary": "Xenstore: Guests can create arbitrary number of nodes via transactions", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09802", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09727", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09776", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09752", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11254", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11455", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11422", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11393", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00038", "scoring_system": "epss", "scoring_elements": "0.11255", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12075", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12097", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-421.html", "reference_id": "XSA-421", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-421.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42325", "XSA-421" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wh75-sc4f-qqc1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4285?format=api", "vulnerability_id": "VCID-xcvw-eex8-j3bf", "summary": "PoD operations on misaligned GFNs", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28707", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24654", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24807", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24885", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24925", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.247", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24767", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24813", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24827", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24787", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.2473", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24745", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24737", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24714", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28707" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-388.html", "reference_id": "XSA-388", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-388.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28707" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xcvw-eex8-j3bf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4239?format=api", "vulnerability_id": "VCID-xe4j-gg7f-wyfa", "summary": "races with evtchn_reset()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25599.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22299", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22465", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2251", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22381", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22436", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22457", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22416", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2236", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22379", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22375", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22323", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22174", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879567", "reference_id": "1879567", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879567" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-343.html", "reference_id": "XSA-343", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-343.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25599", "XSA-343" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xe4j-gg7f-wyfa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4341?format=api", "vulnerability_id": "VCID-z3g4-1vhq-97dj", "summary": "Xenstore: Guests can create arbitrary number of nodes via transactions", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09583", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09534", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09618", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.0957", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09496", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11257", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11198", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11224", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11062", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11071", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11824", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11792", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-42326" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33745" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2022/11/01/11", "reference_id": "11", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T15:05:04Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2022/11/01/11" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-421.html", "reference_id": "advisory-421.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T15:05:04Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-421.html" }, { "reference_url": "https://xenbits.xenproject.org/xsa/advisory-421.txt", "reference_id": "advisory-421.txt", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T15:05:04Z/" } ], "url": "https://xenbits.xenproject.org/xsa/advisory-421.txt" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5272", "reference_id": "dsa-5272", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T15:05:04Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5272" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T15:05:04Z/" } ], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-421.html", "reference_id": "XSA-421", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-421.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/", "reference_id": "YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T15:05:04Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/", "reference_id": "YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T15:05:04Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/", "reference_id": "ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-05T15:05:04Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-42326" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z3g4-1vhq-97dj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4281?format=api", "vulnerability_id": "VCID-z3qj-cnxq-pkgq", "summary": "guests may exceed their designated memory limit", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28706", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.35982", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.3616", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36355", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36388", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36222", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36271", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36294", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36299", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36262", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36238", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36282", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36266", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36214", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28704" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28705" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28706" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28707" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28708" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28709" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-385.html", "reference_id": "XSA-385", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-385.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28706", "XSA-385" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z3qj-cnxq-pkgq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4309?format=api", "vulnerability_id": "VCID-z8zf-cqkb-guge", "summary": "IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31257", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31574", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31618", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31437", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.3149", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31519", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31523", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31481", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31444", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31479", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31457", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31426", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23033" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23035" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26356" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26357" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26359" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-400.html", "reference_id": "XSA-400", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-400.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-26360", "XSA-400" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z8zf-cqkb-guge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4324?format=api", "vulnerability_id": "VCID-zkyv-h5at-xkgq", "summary": "Retbleed - arbitrary speculative code execution with return instructions", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23825.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23825.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23825", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.3369", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33723", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33561", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33605", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33638", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33633", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33591", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33569", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33602", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33578", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33546", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33387", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23825" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29900" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103153", "reference_id": "2103153", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2103153" }, { "reference_url": "https://security.gentoo.org/glsa/202402-07", "reference_id": "GLSA-202402-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7110", "reference_id": "RHSA-2022:7110", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7110" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7134", "reference_id": "RHSA-2022:7134", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7134" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7337", "reference_id": "RHSA-2022:7337", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7337" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7338", "reference_id": "RHSA-2022:7338", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7338" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7933", "reference_id": "RHSA-2022:7933", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7933" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8267", "reference_id": "RHSA-2022:8267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8973", "reference_id": "RHSA-2022:8973", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8973" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8974", "reference_id": "RHSA-2022:8974", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8974" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-407.html", "reference_id": "XSA-407", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-407.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2022-23825", "XSA-407" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zkyv-h5at-xkgq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4247?format=api", "vulnerability_id": "VCID-zrxf-3w1d-t3ba", "summary": "Information leak via power sidechannel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28368.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28368.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20591", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20734", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20793", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20512", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20589", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20648", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20668", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20626", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20574", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20559", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20556", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20551", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20436", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28368" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1897145", "reference_id": "1897145", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1897145" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-351.html", "reference_id": "XSA-351", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-351.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-28368", "XSA-351" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zrxf-3w1d-t3ba" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4164?format=api", "vulnerability_id": "VCID-1phh-s2rg-4ugh", "summary": "resource accounting issues in x86 IOREQ server handling", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19963.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19963.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19963", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15892", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15955", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16019", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15819", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15904", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15966", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15945", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15907", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15839", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15762", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15773", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15835", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652231", "reference_id": "1652231", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652231" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-276.html", "reference_id": "XSA-276", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-276.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-19963", "XSA-276" ], "risk_score": 2.3, "exploitability": "0.5", "weighted_severity": "4.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1phh-s2rg-4ugh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4227?format=api", "vulnerability_id": "VCID-1x3w-n7ms-eqeh", "summary": "oxenstored memory leak in reset_watches", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19351", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19538", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19679", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19726", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19449", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19529", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19581", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19584", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19536", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19477", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19439", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19447", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19459", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-330.html", "reference_id": "XSA-330", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-330.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29485", "XSA-330" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1x3w-n7ms-eqeh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4261?format=api", "vulnerability_id": "VCID-28t2-hng7-tfe5", "summary": "missed flush in XSA-321 backport", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27379", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21363", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.215", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.2167", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21728", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21481", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21558", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21617", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21629", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21592", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21535", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21533", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.2154", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21509", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-27379" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-366.html", "reference_id": "XSA-366", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-366.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-27379" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-28t2-hng7-tfe5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4191?format=api", "vulnerability_id": "VCID-2ke1-fmf7-7ydt", "summary": "passed through PCI devices may corrupt host memory after deassignment", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18424.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18424.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30747", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30548", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30768", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30748", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30714", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30874", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30921", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30741", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30799", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30831", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30833", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30788", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30743", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/31/6", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/31/6" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-302.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-302.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1767730", "reference_id": "1767730", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1767730" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18424", "reference_id": "CVE-2019-18424", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:C/A:C" }, { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18424" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-302.html", "reference_id": "XSA-302", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-302.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-18424", "XSA-302" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2ke1-fmf7-7ydt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4259?format=api", "vulnerability_id": "VCID-2n9p-6t7s-kqc5", "summary": "arm: The cache may not be cleaned for newly allocated scrubbed pages", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26933", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23607", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23764", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23881", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23922", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23711", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23782", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23829", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23843", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23799", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23742", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23752", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2374", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23718", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27379" }, { "reference_url": "https://security.archlinux.org/AVG-1587", "reference_id": "AVG-1587", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1587" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-364.html", "reference_id": "XSA-364", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-364.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-26933", "XSA-364" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2n9p-6t7s-kqc5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4195?format=api", "vulnerability_id": "VCID-2yke-a3ka-ubaq", "summary": "Device quarantine for alternate pci assignment methods", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19579.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19579.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32378", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32528", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32563", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32386", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32435", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32462", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32466", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32428", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32401", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32437", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32415", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32212", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1780558", "reference_id": "1780558", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1780558" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-306.html", "reference_id": "XSA-306", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-306.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-19579", "XSA-306" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2yke-a3ka-ubaq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4200?format=api", "vulnerability_id": "VCID-3488-1xdv-4kc8", "summary": "Further issues with restartable PV type change operations", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19580.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19580.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70033", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70045", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.7006", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70037", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70085", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70101", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70124", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.7011", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70097", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.7014", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.7015", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70129", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00622", "scoring_system": "epss", "scoring_elements": "0.70179", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778185", "reference_id": "1778185", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778185" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-310.html", "reference_id": "XSA-310", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-310.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-19580", "XSA-310" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3488-1xdv-4kc8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4241?format=api", "vulnerability_id": "VCID-34gr-dtsz-1fab", "summary": "x86: Race condition in Xen mapping code", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27672.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27672.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11676", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11799", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11842", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11631", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11716", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11771", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11782", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11743", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11719", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11581", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11582", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11705", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11664", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891096", "reference_id": "1891096", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891096" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-345.html", "reference_id": "XSA-345", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-345.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-27672", "XSA-345" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-34gr-dtsz-1fab" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4214?format=api", "vulnerability_id": "VCID-3pxf-xndw-5fft", "summary": "Xenstore: guests can crash xenstored via watchs", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19652", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19798", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19943", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20001", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19728", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19808", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.1986", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.1987", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19825", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19768", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19742", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19744", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19756", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-324.html", "reference_id": "XSA-324", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-324.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29484", "XSA-324" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3pxf-xndw-5fft" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4201?format=api", "vulnerability_id": "VCID-3pzv-55sc-37ge", "summary": "Bugs in dynamic height handling for AMD IOMMU pagetables", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19577.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19577.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31404", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.3154", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31582", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31399", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31452", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31483", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31487", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31445", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31408", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31442", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31421", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31391", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31221", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778194", "reference_id": "1778194", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778194" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-311.html", "reference_id": "XSA-311", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-311.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-19577", "XSA-311" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3pzv-55sc-37ge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4188?format=api", "vulnerability_id": "VCID-3qjm-4egs-1kax", "summary": "Issues with restartable PV type change operations", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18421.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18421.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.82989", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83118", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83053", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83092", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83096", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83005", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83019", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83016", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83041", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83048", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83064", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01863", "scoring_system": "epss", "scoring_elements": "0.83058", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/31/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/31/3" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-299.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-299.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1765043", "reference_id": "1765043", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1765043" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18421", "reference_id": "CVE-2019-18421", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:C/I:C/A:C" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18421" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-299.html", "reference_id": "XSA-299", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-299.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-18421", "XSA-299" ], "risk_score": 3.6, "exploitability": "0.5", "weighted_severity": "7.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3qjm-4egs-1kax" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4211?format=api", "vulnerability_id": "VCID-3tjz-1jvw-8uc4", "summary": "insufficient cache write-back under VT-d", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15565.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15565.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22806", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22975", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.23019", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22811", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22884", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22937", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22956", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22919", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22862", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22877", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2287", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22831", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22667", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851475", "reference_id": "1851475", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851475" }, { "reference_url": "https://security.gentoo.org/glsa/202007-02", "reference_id": "GLSA-202007-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202007-02" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-321.html", "reference_id": "XSA-321", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-321.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-15565", "XSA-321" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3tjz-1jvw-8uc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4233?format=api", "vulnerability_id": "VCID-3whm-8fyv-zyhd", "summary": "race when migrating timers between x86 HVM vCPU-s", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25604.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25604.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21783", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21948", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.22002", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21767", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21844", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.219", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21911", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21871", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21814", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21817", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21823", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21787", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21639", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25604" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877382", "reference_id": "1877382", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877382" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-336.html", "reference_id": "XSA-336", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-336.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25604", "XSA-336" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3whm-8fyv-zyhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4225?format=api", "vulnerability_id": "VCID-493n-hphq-akhy", "summary": "non-atomic modification of live EPT PTE", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15567.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15567.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17515", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17678", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17724", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17444", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17535", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17595", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17613", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17566", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17514", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17458", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17467", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17502", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17412", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15567" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851472", "reference_id": "1851472", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851472" }, { "reference_url": "https://security.gentoo.org/glsa/202007-02", "reference_id": "GLSA-202007-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202007-02" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-328.html", "reference_id": "XSA-328", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-328.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-15567", "XSA-328" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-493n-hphq-akhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4174?format=api", "vulnerability_id": "VCID-61zz-uk19-r7b2", "summary": "x86: Inconsistent PV IOMMU discipline", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17343.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17343.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17343", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31041", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.3086", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31049", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31016", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31166", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31212", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31032", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31089", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31118", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31125", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31081", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31036", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31068", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17343" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/25/10", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/10" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-288.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-288.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679321", "reference_id": "1679321", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679321" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929994", "reference_id": "929994", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929994" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17343", "reference_id": "CVE-2019-17343", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17343" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-288.html", "reference_id": "XSA-288", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-288.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17343" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-61zz-uk19-r7b2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4165?format=api", "vulnerability_id": "VCID-64mf-wa98-rkha", "summary": "x86: incorrect error handling for guest p2m page removals", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19964.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19964.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19964", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31599", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31732", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31776", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31595", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31648", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31677", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31682", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31642", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31605", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31639", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31616", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31585", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00124", "scoring_system": "epss", "scoring_elements": "0.31407", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19964" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19964", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19964" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652227", "reference_id": "1652227", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652227" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-277.html", "reference_id": "XSA-277", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-277.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-19964", "XSA-277" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-64mf-wa98-rkha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4169?format=api", "vulnerability_id": "VCID-6b1e-39na-b7gf", "summary": "guest use of HLE constructs may lock up host", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19967.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19967.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19967", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21875", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22037", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22089", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21854", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21929", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21985", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21997", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21957", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.219", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21901", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21907", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21868", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21721", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19967" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660493", "reference_id": "1660493", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660493" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-282.html", "reference_id": "XSA-282", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-282.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-19967", "XSA-282" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6b1e-39na-b7gf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4160?format=api", "vulnerability_id": "VCID-6jsn-7538-a7ha", "summary": "L1 Terminal Fault speculative side channel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3646.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3646.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-3646", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88182", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88231", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88237", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88249", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88242", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88241", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88255", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88254", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.8819", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88206", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03877", "scoring_system": "epss", "scoring_elements": "0.88212", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0398", "scoring_system": "epss", "scoring_elements": "0.88411", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0398", "scoring_system": "epss", "scoring_elements": "0.88427", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-3646" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005", "reference_id": "1585005", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005" }, { "reference_url": "https://security.archlinux.org/AVG-756", "reference_id": "AVG-756", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-756" }, { "reference_url": "https://security.archlinux.org/AVG-757", "reference_id": "AVG-757", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-757" }, { "reference_url": "https://security.archlinux.org/AVG-758", "reference_id": "AVG-758", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-758" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2384", "reference_id": "RHSA-2018:2384", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2384" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2387", "reference_id": "RHSA-2018:2387", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2387" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2388", "reference_id": "RHSA-2018:2388", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2389", "reference_id": "RHSA-2018:2389", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2389" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2390", "reference_id": "RHSA-2018:2390", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2390" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2391", "reference_id": "RHSA-2018:2391", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2391" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2392", "reference_id": "RHSA-2018:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2393", "reference_id": "RHSA-2018:2393", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2393" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2394", "reference_id": "RHSA-2018:2394", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2394" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2395", "reference_id": "RHSA-2018:2395", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2395" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2396", "reference_id": "RHSA-2018:2396", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2396" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2402", "reference_id": "RHSA-2018:2402", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2402" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2403", "reference_id": "RHSA-2018:2403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2404", "reference_id": "RHSA-2018:2404", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2404" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2602", "reference_id": "RHSA-2018:2602", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2602" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2603", "reference_id": "RHSA-2018:2603", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2603" }, { "reference_url": "https://usn.ubuntu.com/3740-1/", "reference_id": "USN-3740-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3740-1/" }, { "reference_url": "https://usn.ubuntu.com/3740-2/", "reference_id": "USN-3740-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3740-2/" }, { "reference_url": "https://usn.ubuntu.com/3741-1/", "reference_id": "USN-3741-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3741-1/" }, { "reference_url": "https://usn.ubuntu.com/3741-2/", "reference_id": "USN-3741-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3741-2/" }, { "reference_url": "https://usn.ubuntu.com/3742-1/", "reference_id": "USN-3742-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3742-1/" }, { "reference_url": "https://usn.ubuntu.com/3742-2/", "reference_id": "USN-3742-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3742-2/" }, { "reference_url": "https://usn.ubuntu.com/3756-1/", "reference_id": "USN-3756-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3756-1/" }, { "reference_url": "https://usn.ubuntu.com/3823-1/", "reference_id": "USN-3823-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3823-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-273.html", "reference_id": "XSA-273", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-273.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-3646", "XSA-273" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6jsn-7538-a7ha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4243?format=api", "vulnerability_id": "VCID-6kh6-edk7-xkcc", "summary": "unsafe AMD IOMMU page table updates", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27670.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27670.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13515", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13614", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13675", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13474", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13555", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13605", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13577", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13539", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13491", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13403", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.134", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13472", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13478", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891087", "reference_id": "1891087", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891087" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-347.html", "reference_id": "XSA-347", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-347.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-27670", "XSA-347" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6kh6-edk7-xkcc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4181?format=api", "vulnerability_id": "VCID-6vxj-m9ud-5ke9", "summary": "Unlimited Arm Atomics Operations", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17350.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17350.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1791", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17794", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1784", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1785", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17886", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1807", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18125", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17826", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17913", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17974", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17991", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17947", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17898", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-295.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-295.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1720759", "reference_id": "1720759", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1720759" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17350", "reference_id": "CVE-2019-17350", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17350" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-295.html", "reference_id": "XSA-295", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-295.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17350" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6vxj-m9ud-5ke9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4197?format=api", "vulnerability_id": "VCID-7ghz-5whc-u3ee", "summary": "find_next_bit() issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19582.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19582.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29063", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29137", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29187", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28996", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29061", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29103", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29109", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29064", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29013", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29039", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29016", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.2897", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.2885", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778191", "reference_id": "1778191", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778191" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-307.html", "reference_id": "XSA-307", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-307.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-19582", "XSA-307" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7ghz-5whc-u3ee" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4159?format=api", "vulnerability_id": "VCID-7vn6-5h93-27hn", "summary": "L1 Terminal Fault speculative side channel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3620.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3620.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-3620", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02259", "scoring_system": "epss", "scoring_elements": "0.84661", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0232", "scoring_system": "epss", "scoring_elements": "0.84817", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86607", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86677", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.8667", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86683", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86689", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86618", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86638", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86637", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86656", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86665", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03037", "scoring_system": "epss", "scoring_elements": "0.86679", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-3620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005", "reference_id": "1585005", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1585005" }, { "reference_url": "https://security.archlinux.org/AVG-756", "reference_id": "AVG-756", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-756" }, { "reference_url": "https://security.archlinux.org/AVG-757", "reference_id": "AVG-757", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-757" }, { "reference_url": "https://security.archlinux.org/AVG-758", "reference_id": "AVG-758", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-758" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2384", "reference_id": "RHSA-2018:2384", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2384" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2387", "reference_id": "RHSA-2018:2387", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2387" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2388", "reference_id": "RHSA-2018:2388", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2389", "reference_id": "RHSA-2018:2389", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2389" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2390", "reference_id": "RHSA-2018:2390", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2390" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2391", "reference_id": "RHSA-2018:2391", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2391" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2392", "reference_id": "RHSA-2018:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2393", "reference_id": "RHSA-2018:2393", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2393" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2394", "reference_id": "RHSA-2018:2394", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2394" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2395", "reference_id": "RHSA-2018:2395", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2395" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2396", "reference_id": "RHSA-2018:2396", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2396" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2402", "reference_id": "RHSA-2018:2402", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2402" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2403", "reference_id": "RHSA-2018:2403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2404", "reference_id": "RHSA-2018:2404", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2404" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2602", "reference_id": "RHSA-2018:2602", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2602" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2603", "reference_id": "RHSA-2018:2603", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2603" }, { "reference_url": "https://usn.ubuntu.com/3740-1/", "reference_id": "USN-3740-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3740-1/" }, { "reference_url": "https://usn.ubuntu.com/3740-2/", "reference_id": "USN-3740-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3740-2/" }, { "reference_url": "https://usn.ubuntu.com/3741-1/", "reference_id": "USN-3741-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3741-1/" }, { "reference_url": "https://usn.ubuntu.com/3741-2/", "reference_id": "USN-3741-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3741-2/" }, { "reference_url": "https://usn.ubuntu.com/3742-1/", "reference_id": "USN-3742-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3742-1/" }, { "reference_url": "https://usn.ubuntu.com/3742-2/", "reference_id": "USN-3742-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3742-2/" }, { "reference_url": "https://usn.ubuntu.com/3823-1/", "reference_id": "USN-3823-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3823-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-273.html", "reference_id": "XSA-273", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-273.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-3620" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7vn6-5h93-27hn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4177?format=api", "vulnerability_id": "VCID-85jp-mmaq-n7ck", "summary": "x86: insufficient TLB flushing when using PCID", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17346.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17346.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17346", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39449", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.3932", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39614", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39584", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39499", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39598", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39621", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39536", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39591", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39607", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39617", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.3958", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39564", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17346" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/25/5", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/5" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-292.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-292.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679326", "reference_id": "1679326", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679326" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929993", "reference_id": "929993", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929993" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17346", "reference_id": "CVE-2019-17346", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17346" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-292.html", "reference_id": "XSA-292", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-292.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17346" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-85jp-mmaq-n7ck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4175?format=api", "vulnerability_id": "VCID-898q-dzb7-3qe7", "summary": "missing preemption in x86 PV page table unvalidation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17344.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17344.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17344", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35213", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35076", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35373", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35362", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35309", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35412", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35437", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35319", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35366", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35391", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35393", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35357", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35334", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17344" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/25/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/3" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-290.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-290.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679334", "reference_id": "1679334", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679334" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929996", "reference_id": "929996", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929996" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17344", "reference_id": "CVE-2019-17344", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17344" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-290.html", "reference_id": "XSA-290", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-290.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17344" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-898q-dzb7-3qe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4249?format=api", "vulnerability_id": "VCID-8r8y-8bq2-jufj", "summary": "oxenstored: permissions not checked on root node", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14314", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14399", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14464", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.1427", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14353", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14408", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14358", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14317", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14262", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14153", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14151", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14224", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14252", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-353.html", "reference_id": "XSA-353", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-353.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29479", "XSA-353" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8r8y-8bq2-jufj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4173?format=api", "vulnerability_id": "VCID-9ed4-5mca-kfdv", "summary": "x86: steal_page violates page_struct access discipline", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17342.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17342.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17342", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29817", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29607", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29731", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29687", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29863", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29909", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29725", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29787", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29822", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29832", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29786", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29736", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29753", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17342" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/25/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/2" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-287.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-287.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679328", "reference_id": "1679328", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679328" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930001", "reference_id": "930001", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930001" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17342", "reference_id": "CVE-2019-17342", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "7.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17342" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-287.html", "reference_id": "XSA-287", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-287.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17342" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9ed4-5mca-kfdv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4254?format=api", "vulnerability_id": "VCID-9hr5-p18q-7qb8", "summary": "FIFO event channels control structure ordering", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18173", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18342", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18494", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18548", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18256", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18339", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18391", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18343", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18291", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18235", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18247", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00058", "scoring_system": "epss", "scoring_elements": "0.18275", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29571" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-359.html", "reference_id": "XSA-359", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-359.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29571", "XSA-359" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9hr5-p18q-7qb8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4184?format=api", "vulnerability_id": "VCID-9yut-bdsw-gkfy", "summary": "Microarchitectural Data Sampling speculative side channel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12127.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12127.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12127", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65634", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65683", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65713", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65678", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.6573", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65742", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65763", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65748", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65719", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65754", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65767", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65753", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65766", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1667782", "reference_id": "1667782", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1667782" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129", "reference_id": "929129", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1155", "reference_id": "RHSA-2019:1155", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1167", "reference_id": "RHSA-2019:1167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1168", "reference_id": "RHSA-2019:1168", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1168" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1169", "reference_id": "RHSA-2019:1169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1170", "reference_id": "RHSA-2019:1170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1171", "reference_id": "RHSA-2019:1171", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1171" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1172", "reference_id": "RHSA-2019:1172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1172" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1174", "reference_id": "RHSA-2019:1174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1175", "reference_id": "RHSA-2019:1175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1176", "reference_id": "RHSA-2019:1176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1177", "reference_id": "RHSA-2019:1177", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1177" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1178", "reference_id": "RHSA-2019:1178", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1178" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1179", "reference_id": "RHSA-2019:1179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1180", "reference_id": "RHSA-2019:1180", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1180" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1181", "reference_id": "RHSA-2019:1181", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1181" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1182", "reference_id": "RHSA-2019:1182", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1182" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1183", "reference_id": "RHSA-2019:1183", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1183" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1184", "reference_id": "RHSA-2019:1184", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1184" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1185", "reference_id": "RHSA-2019:1185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1186", "reference_id": "RHSA-2019:1186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1187", "reference_id": "RHSA-2019:1187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1188", "reference_id": "RHSA-2019:1188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1189", "reference_id": "RHSA-2019:1189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1190", "reference_id": "RHSA-2019:1190", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1190" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1193", "reference_id": "RHSA-2019:1193", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1193" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1194", "reference_id": "RHSA-2019:1194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1195", "reference_id": "RHSA-2019:1195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1196", "reference_id": "RHSA-2019:1196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1197", "reference_id": "RHSA-2019:1197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1198", "reference_id": "RHSA-2019:1198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1199", "reference_id": "RHSA-2019:1199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1199" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1200", "reference_id": "RHSA-2019:1200", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1200" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1201", "reference_id": "RHSA-2019:1201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1202", "reference_id": "RHSA-2019:1202", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1202" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1203", "reference_id": "RHSA-2019:1203", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1203" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1204", "reference_id": "RHSA-2019:1204", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1204" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1205", "reference_id": "RHSA-2019:1205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1206", "reference_id": "RHSA-2019:1206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1207", "reference_id": "RHSA-2019:1207", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1207" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1208", "reference_id": "RHSA-2019:1208", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1208" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1209", "reference_id": "RHSA-2019:1209", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1209" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1455", "reference_id": "RHSA-2019:1455", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1455" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3977-1/", "reference_id": "USN-3977-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-1/" }, { "reference_url": "https://usn.ubuntu.com/3977-2/", "reference_id": "USN-3977-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-2/" }, { "reference_url": "https://usn.ubuntu.com/3977-3/", "reference_id": "USN-3977-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-3/" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" }, { "reference_url": "https://usn.ubuntu.com/3979-1/", "reference_id": "USN-3979-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3979-1/" }, { "reference_url": "https://usn.ubuntu.com/3980-1/", "reference_id": "USN-3980-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3980-1/" }, { "reference_url": "https://usn.ubuntu.com/3980-2/", "reference_id": "USN-3980-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3980-2/" }, { "reference_url": "https://usn.ubuntu.com/3981-1/", "reference_id": "USN-3981-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3981-1/" }, { "reference_url": "https://usn.ubuntu.com/3981-2/", "reference_id": "USN-3981-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3981-2/" }, { "reference_url": "https://usn.ubuntu.com/3982-1/", "reference_id": "USN-3982-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3982-1/" }, { "reference_url": "https://usn.ubuntu.com/3982-2/", "reference_id": "USN-3982-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3982-2/" }, { "reference_url": "https://usn.ubuntu.com/3983-1/", "reference_id": "USN-3983-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3983-1/" }, { "reference_url": "https://usn.ubuntu.com/3983-2/", "reference_id": "USN-3983-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3983-2/" }, { "reference_url": "https://usn.ubuntu.com/3984-1/", "reference_id": "USN-3984-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3984-1/" }, { "reference_url": "https://usn.ubuntu.com/3985-1/", "reference_id": "USN-3985-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3985-1/" }, { "reference_url": "https://usn.ubuntu.com/3985-2/", "reference_id": "USN-3985-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3985-2/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-297.html", "reference_id": "XSA-297", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-297.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-12127" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9yut-bdsw-gkfy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4202?format=api", "vulnerability_id": "VCID-a3by-shse-q3fr", "summary": "multiple xenoprof issues", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11740.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11740.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25608", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25436", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.2551", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25478", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25679", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.2572", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25489", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25561", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25609", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25619", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25578", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25521", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25525", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4723" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2020/04/14/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2020/04/14/1" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-313.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-313.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823911", "reference_id": "1823911", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823911" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11740", "reference_id": "CVE-2020-11740", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:N/A:N" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11740" }, { "reference_url": "https://security.gentoo.org/glsa/202005-08", "reference_id": "GLSA-202005-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-08" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-313.html", "reference_id": "XSA-313", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-313.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-11740" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a3by-shse-q3fr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4168?format=api", "vulnerability_id": "VCID-an7r-pjrv-pyde", "summary": "Fix for XSA-240 conflicts with shadow paging", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19966.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19966.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19966", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31523", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.3166", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31705", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31575", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31605", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.3161", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31567", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.3153", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31564", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31541", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31509", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31335", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19966" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652235", "reference_id": "1652235", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1652235" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-280.html", "reference_id": "XSA-280", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-280.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-19966", "XSA-280" ], "risk_score": 2.3, "exploitability": "0.5", "weighted_severity": "4.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-an7r-pjrv-pyde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4192?format=api", "vulnerability_id": "VCID-aw3c-9db1-a7eh", "summary": "ARM: Interrupts are unconditionally unmasked in exception handlers", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18422.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18422.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87487", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87572", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87557", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87555", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87497", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.8751", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87512", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87531", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87538", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87549", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87545", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87542", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03469", "scoring_system": "epss", "scoring_elements": "0.87556", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/31/5", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/31/5" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-303.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-303.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771442", "reference_id": "1771442", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771442" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:arm:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:arm:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:arm:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18422", "reference_id": "CVE-2019-18422", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:C/I:C/A:C" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18422" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-303.html", "reference_id": "XSA-303", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-303.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-18422", "XSA-303" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aw3c-9db1-a7eh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4215?format=api", "vulnerability_id": "VCID-bc6f-wu8g-5yb4", "summary": "Xenstore: guests can disturb domain cleanup", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17414", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17518", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17681", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17727", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17447", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17538", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17597", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17615", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17568", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17516", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.1746", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17469", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00056", "scoring_system": "epss", "scoring_elements": "0.17505", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-325.html", "reference_id": "XSA-325", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-325.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29483", "XSA-325" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bc6f-wu8g-5yb4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4187?format=api", "vulnerability_id": "VCID-bd46-xyhc-8uf5", "summary": "missing descriptor table limit checking in x86 PV emulation", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18425.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18425.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89523", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89588", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89575", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89577", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89574", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89527", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.8954", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89541", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89557", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89561", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89569", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89567", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.04874", "scoring_system": "epss", "scoring_elements": "0.89562", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/31/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/31/2" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-298.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-298.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771340", "reference_id": "1771340", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771340" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18425", "reference_id": "CVE-2019-18425", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:C/I:C/A:C" }, { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18425" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-298.html", "reference_id": "XSA-298", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-298.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-18425", "XSA-298" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bd46-xyhc-8uf5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4236?format=api", "vulnerability_id": "VCID-bs56-1z79-uqbt", "summary": "x86 pv guest kernel DoS via SYSENTER", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25596.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25596.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24863", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24941", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24982", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24755", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24823", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24867", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24881", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24843", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24787", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24799", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24791", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24768", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24707", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880137", "reference_id": "1880137", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880137" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-339.html", "reference_id": "XSA-339", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-339.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25596", "XSA-339" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bs56-1z79-uqbt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4230?format=api", "vulnerability_id": "VCID-bzve-5gwu-8ydb", "summary": "x86 pv: Crash when handling guest access to MSR_MISC_ENABLE", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25602.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25602.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23866", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23986", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.24025", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2381", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23877", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23923", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2394", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23896", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23841", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23853", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23842", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23822", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23704", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880158", "reference_id": "1880158", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880158" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-333.html", "reference_id": "XSA-333", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-333.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25602", "XSA-333" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bzve-5gwu-8ydb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4180?format=api", "vulnerability_id": "VCID-cbtr-g13y-tbhz", "summary": "Unlimited Arm Atomics Operations", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17349.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17349.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1791", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17794", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1784", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1785", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17886", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1807", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18125", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17826", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17913", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17974", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17991", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17947", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17898", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-295.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-295.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1720759", "reference_id": "1720759", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1720759" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17349", "reference_id": "CVE-2019-17349", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17349" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-295.html", "reference_id": "XSA-295", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-295.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17349" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cbtr-g13y-tbhz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4154?format=api", "vulnerability_id": "VCID-cuab-yybg-6uhs", "summary": "Use of v2 grant tables may cause crash on ARM", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15469.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15469.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15469", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39828", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39974", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.40002", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39923", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39976", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.3999", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.4", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39964", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39944", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39994", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39966", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39888", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39714", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15469" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1610543", "reference_id": "1610543", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1610543" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-268.html", "reference_id": "XSA-268", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-268.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-15469", "XSA-268" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cuab-yybg-6uhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4248?format=api", "vulnerability_id": "VCID-d3ad-6tme-bfem", "summary": "oxenstored: node ownership can be changed by unprivileged clients", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18989", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19124", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19176", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18893", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18972", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19026", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19033", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18987", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18935", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18889", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18901", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18913", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18804", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-352.html", "reference_id": "XSA-352", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-352.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29486", "XSA-352" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d3ad-6tme-bfem" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4240?format=api", "vulnerability_id": "VCID-dqy9-zkvw-e3gk", "summary": "lack of preemption in evtchn_reset() / evtchn_destroy()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25601.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22683", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22858", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22902", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22695", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22771", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22823", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22845", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22808", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22751", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22765", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22761", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2272", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22557", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877378", "reference_id": "1877378", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877378" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-344.html", "reference_id": "XSA-344", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-344.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25601", "XSA-344" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dqy9-zkvw-e3gk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4212?format=api", "vulnerability_id": "VCID-drhd-ytb7-u3em", "summary": "Xenstore: new domains inheriting existing node permissions", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20321", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20465", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20609", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20667", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20394", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20475", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20534", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20558", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20513", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20458", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.2045", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20446", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-322.html", "reference_id": "XSA-322", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-322.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29481", "XSA-322" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-drhd-ytb7-u3em" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4271?format=api", "vulnerability_id": "VCID-e96u-uwba-kfg5", "summary": "Speculative Code Store Bypass", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23106", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23281", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23324", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23112", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23186", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23237", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23259", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23222", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23163", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.2318", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23172", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.23133", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00078", "scoring_system": "epss", "scoring_elements": "0.22958", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-375.html", "reference_id": "XSA-375", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-375.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-26313" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e96u-uwba-kfg5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4235?format=api", "vulnerability_id": "VCID-eb8v-p31a-yuhu", "summary": "once valid event channels may not turn invalid", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29184", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.2926", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.2931", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29122", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29187", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29227", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29233", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29186", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29134", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.2916", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29137", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.29088", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00109", "scoring_system": "epss", "scoring_elements": "0.28968", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879553", "reference_id": "1879553", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879553" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-338.html", "reference_id": "XSA-338", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-338.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25597", "XSA-338" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eb8v-p31a-yuhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4242?format=api", "vulnerability_id": "VCID-eka3-u8e5-3uad", "summary": "undue deferral of IOMMU TLB flushes", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27671.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27671.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21789", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21954", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.22007", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21772", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21849", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21905", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21916", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21876", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21819", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21821", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21828", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21791", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21643", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891091", "reference_id": "1891091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891091" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-346.html", "reference_id": "XSA-346", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-346.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-27671", "XSA-346" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eka3-u8e5-3uad" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4234?format=api", "vulnerability_id": "VCID-ep7n-um5m-ekgk", "summary": "PCI passthrough code reading back hardware registers", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25165", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25245", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25284", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25056", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25126", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25171", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25184", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25141", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25089", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.251", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25091", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25062", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00088", "scoring_system": "epss", "scoring_elements": "0.25002", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877369", "reference_id": "1877369", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877369" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-337.html", "reference_id": "XSA-337", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-337.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25595", "XSA-337" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ep7n-um5m-ekgk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4182?format=api", "vulnerability_id": "VCID-favj-4du1-qqe8", "summary": "VCPUOP_initialise DoS", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18420.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18420.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88458", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88537", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88513", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88527", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88523", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88466", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88482", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88485", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88503", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.8851", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.04046", "scoring_system": "epss", "scoring_elements": "0.88521", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/31/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/31/1" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-296.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-296.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771366", "reference_id": "1771366", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771366" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18420", "reference_id": "CVE-2019-18420", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:N/A:C" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18420" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-296.html", "reference_id": "XSA-296", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-296.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-18420" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-favj-4du1-qqe8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4176?format=api", "vulnerability_id": "VCID-g9hd-27my-6baj", "summary": "x86/PV: page type reference counting issue with failed IOMMU update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17345.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17345.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17345", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22631", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22501", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22707", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22704", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22657", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22804", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22848", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22639", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22714", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22765", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22786", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22748", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2269", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17345" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/25/4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/4" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-291.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-291.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1685570", "reference_id": "1685570", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1685570" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929995", "reference_id": "929995", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929995" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17345", "reference_id": "CVE-2019-17345", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17345" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-291.html", "reference_id": "XSA-291", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-291.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17345" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g9hd-27my-6baj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4207?format=api", "vulnerability_id": "VCID-gsas-zqvf-2khf", "summary": "Incorrect error handling in event channel port allocation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15566.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15566.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.1717", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17335", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17383", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17162", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17253", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17312", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17325", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17276", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17217", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17156", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17197", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17102", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851474", "reference_id": "1851474", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851474" }, { "reference_url": "https://security.gentoo.org/glsa/202007-02", "reference_id": "GLSA-202007-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202007-02" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-317.html", "reference_id": "XSA-317", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-317.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-15566", "XSA-317" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gsas-zqvf-2khf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4272?format=api", "vulnerability_id": "VCID-hyup-47wa-pfac", "summary": "x86: TSX Async Abort protections not restored after S3", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57968", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57887", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57971", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.5799", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57966", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58022", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58024", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58041", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58019", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.57999", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58029", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58028", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00357", "scoring_system": "epss", "scoring_elements": "0.58005", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-377.html", "reference_id": "XSA-377", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-377.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28690", "XSA-377" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hyup-47wa-pfac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4186?format=api", "vulnerability_id": "VCID-k45n-139y-pyeq", "summary": "Microarchitectural Data Sampling speculative side channel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11091.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11091.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11091", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.82207", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.8222", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.8224", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.82236", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.82262", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.8227", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.82289", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.82282", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.82276", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.82312", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.82314", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01697", "scoring_system": "epss", "scoring_elements": "0.82335", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705312", "reference_id": "1705312", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705312" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129", "reference_id": "929129", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1155", "reference_id": "RHSA-2019:1155", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1167", "reference_id": "RHSA-2019:1167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1168", "reference_id": "RHSA-2019:1168", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1168" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1169", "reference_id": "RHSA-2019:1169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1170", "reference_id": "RHSA-2019:1170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1171", "reference_id": "RHSA-2019:1171", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1171" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1172", "reference_id": "RHSA-2019:1172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1172" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1174", "reference_id": "RHSA-2019:1174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1175", "reference_id": "RHSA-2019:1175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1176", "reference_id": "RHSA-2019:1176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1177", "reference_id": "RHSA-2019:1177", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1177" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1178", "reference_id": "RHSA-2019:1178", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1178" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1179", "reference_id": "RHSA-2019:1179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1180", "reference_id": "RHSA-2019:1180", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1180" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1181", "reference_id": "RHSA-2019:1181", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1181" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1182", "reference_id": "RHSA-2019:1182", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1182" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1183", "reference_id": "RHSA-2019:1183", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1183" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1184", "reference_id": "RHSA-2019:1184", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1184" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1185", "reference_id": "RHSA-2019:1185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1186", "reference_id": "RHSA-2019:1186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1187", "reference_id": "RHSA-2019:1187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1188", "reference_id": "RHSA-2019:1188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1189", "reference_id": "RHSA-2019:1189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1190", "reference_id": "RHSA-2019:1190", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1190" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1193", "reference_id": "RHSA-2019:1193", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1193" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1194", "reference_id": "RHSA-2019:1194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1195", "reference_id": "RHSA-2019:1195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1196", "reference_id": "RHSA-2019:1196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1197", "reference_id": "RHSA-2019:1197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1198", "reference_id": "RHSA-2019:1198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1199", "reference_id": "RHSA-2019:1199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1199" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1200", "reference_id": "RHSA-2019:1200", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1200" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1201", "reference_id": "RHSA-2019:1201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1202", "reference_id": "RHSA-2019:1202", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1202" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1203", "reference_id": "RHSA-2019:1203", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1203" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1204", "reference_id": "RHSA-2019:1204", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1204" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1205", "reference_id": "RHSA-2019:1205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1206", "reference_id": "RHSA-2019:1206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1207", "reference_id": "RHSA-2019:1207", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1207" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1208", "reference_id": "RHSA-2019:1208", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1208" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1209", "reference_id": "RHSA-2019:1209", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1209" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1455", "reference_id": "RHSA-2019:1455", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1455" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3977-1/", "reference_id": "USN-3977-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-1/" }, { "reference_url": "https://usn.ubuntu.com/3977-2/", "reference_id": "USN-3977-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-2/" }, { "reference_url": "https://usn.ubuntu.com/3977-3/", "reference_id": "USN-3977-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-3/" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" }, { "reference_url": "https://usn.ubuntu.com/3979-1/", "reference_id": "USN-3979-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3979-1/" }, { "reference_url": "https://usn.ubuntu.com/3980-1/", "reference_id": "USN-3980-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3980-1/" }, { "reference_url": "https://usn.ubuntu.com/3980-2/", "reference_id": "USN-3980-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3980-2/" }, { "reference_url": "https://usn.ubuntu.com/3981-1/", "reference_id": "USN-3981-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3981-1/" }, { "reference_url": "https://usn.ubuntu.com/3981-2/", "reference_id": "USN-3981-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3981-2/" }, { "reference_url": "https://usn.ubuntu.com/3982-1/", "reference_id": "USN-3982-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3982-1/" }, { "reference_url": "https://usn.ubuntu.com/3982-2/", "reference_id": "USN-3982-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3982-2/" }, { "reference_url": "https://usn.ubuntu.com/3983-1/", "reference_id": "USN-3983-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3983-1/" }, { "reference_url": "https://usn.ubuntu.com/3983-2/", "reference_id": "USN-3983-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3983-2/" }, { "reference_url": "https://usn.ubuntu.com/3984-1/", "reference_id": "USN-3984-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3984-1/" }, { "reference_url": "https://usn.ubuntu.com/3985-1/", "reference_id": "USN-3985-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3985-1/" }, { "reference_url": "https://usn.ubuntu.com/3985-2/", "reference_id": "USN-3985-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3985-2/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-297.html", "reference_id": "XSA-297", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-297.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-11091" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k45n-139y-pyeq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4244?format=api", "vulnerability_id": "VCID-k5j4-3xmv-a7bk", "summary": "undue recursion in x86 HVM context switch code", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21446", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21589", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21761", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21816", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21567", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21644", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21702", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21713", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21674", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21617", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21616", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21624", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21593", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-348.html", "reference_id": "XSA-348", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-348.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29566", "XSA-348" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k5j4-3xmv-a7bk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4206?format=api", "vulnerability_id": "VCID-kf1y-ck1r-1kh8", "summary": "Bad error path in GNTTABOP_map_grant", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11743.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11743.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26382", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26146", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26255", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26221", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26433", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26477", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26251", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26318", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.2637", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26379", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26332", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26274", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.2628", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4723" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2020/04/14/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2020/04/14/3" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-316.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-316.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823925", "reference_id": "1823925", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823925" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11743", "reference_id": "CVE-2020-11743", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11743" }, { "reference_url": "https://security.gentoo.org/glsa/202005-08", "reference_id": "GLSA-202005-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-08" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-316.html", "reference_id": "XSA-316", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-316.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-11743", "XSA-316" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kf1y-ck1r-1kh8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4170?format=api", "vulnerability_id": "VCID-km9e-c58c-jkbp", "summary": "grant table transfer issues on large hosts", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17340.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17340.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17340", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.22956", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.2281", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.23023", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.23015", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.22977", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.23122", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.23166", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.22957", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.23031", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.23084", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.23103", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.23067", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00077", "scoring_system": "epss", "scoring_elements": "0.2301", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17340" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/25/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/1" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-284.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-284.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771349", "reference_id": "1771349", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771349" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929991", "reference_id": "929991", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929991" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17340", "reference_id": "CVE-2019-17340", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:P/A:C" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17340" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-284.html", "reference_id": "XSA-284", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-284.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17340" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-km9e-c58c-jkbp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4270?format=api", "vulnerability_id": "VCID-knqd-zktw-cydm", "summary": "Speculative Code Store Bypass", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17717", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1783", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17992", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18046", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17746", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17834", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17896", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17912", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17867", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17818", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1776", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.1777", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.17808", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-375.html", "reference_id": "XSA-375", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-375.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-0089", "XSA-375" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-knqd-zktw-cydm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4199?format=api", "vulnerability_id": "VCID-mcd1-vc14-y3g5", "summary": "Linear pagetable use / entry miscounts", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19578.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19578.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32575", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.3271", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32746", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32567", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32615", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.3264", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32643", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32604", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32577", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32592", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32562", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00131", "scoring_system": "epss", "scoring_elements": "0.32406", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778161", "reference_id": "1778161", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778161" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-309.html", "reference_id": "XSA-309", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-309.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-19578", "XSA-309" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mcd1-vc14-y3g5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4204?format=api", "vulnerability_id": "VCID-mjsu-m9mt-ukdx", "summary": "Missing memory barriers in read-write unlock paths", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11739.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11739.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25101", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24934", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25027", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24997", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25181", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25223", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24993", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25061", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25106", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.2512", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.2508", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25026", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25035", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4723" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2020/04/14/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2020/04/14/2" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-314.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-314.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823783", "reference_id": "1823783", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823783" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11739", "reference_id": "CVE-2020-11739", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:C/A:C" }, { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11739" }, { "reference_url": "https://security.gentoo.org/glsa/202005-08", "reference_id": "GLSA-202005-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-08" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-314.html", "reference_id": "XSA-314", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-314.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-11739", "XSA-314" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mjsu-m9mt-ukdx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4268?format=api", "vulnerability_id": "VCID-n7pg-b7kc-wkew", "summary": "inappropriate x86 IOMMU timeout detection / handling", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10576", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10461", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10604", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10666", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1053", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10603", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10662", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10675", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10643", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10619", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10484", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10502", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10627", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-28692" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0089" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26313" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28690" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28692" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-373.html", "reference_id": "XSA-373", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-373.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2021-28692", "XSA-373" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n7pg-b7kc-wkew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4253?format=api", "vulnerability_id": "VCID-ndz3-372h-8fhk", "summary": "FIFO event channels control block related ordering", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18568", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18744", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.1888", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18933", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18656", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18736", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18789", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18794", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18747", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18697", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18646", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18657", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.18676", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/202107-30", "reference_id": "GLSA-202107-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-30" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-358.html", "reference_id": "XSA-358", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-358.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29570", "XSA-358" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ndz3-372h-8fhk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4193?format=api", "vulnerability_id": "VCID-nhj6-dhyx-xbas", "summary": "x86: Machine Check Error on Page Size Change DoS", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12207.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12207.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49484", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49514", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49541", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49493", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49548", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49543", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.4956", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49532", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49534", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49581", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49578", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00262", "scoring_system": "epss", "scoring_elements": "0.49538", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1646768", "reference_id": "1646768", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1646768" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3832", "reference_id": "RHSA-2019:3832", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3832" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3833", "reference_id": "RHSA-2019:3833", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3833" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3834", "reference_id": "RHSA-2019:3834", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3834" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3835", "reference_id": "RHSA-2019:3835", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3835" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3836", "reference_id": "RHSA-2019:3836", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3836" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3837", "reference_id": "RHSA-2019:3837", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3837" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3838", "reference_id": "RHSA-2019:3838", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3838" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3839", "reference_id": "RHSA-2019:3839", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3839" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3840", "reference_id": "RHSA-2019:3840", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3840" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3841", "reference_id": "RHSA-2019:3841", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3841" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3842", "reference_id": "RHSA-2019:3842", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3842" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3843", "reference_id": "RHSA-2019:3843", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3843" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3844", "reference_id": "RHSA-2019:3844", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3844" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3860", "reference_id": "RHSA-2019:3860", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3860" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3916", "reference_id": "RHSA-2019:3916", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3916" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3936", "reference_id": "RHSA-2019:3936", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3936" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3941", "reference_id": "RHSA-2019:3941", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3941" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0026", "reference_id": "RHSA-2020:0026", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0026" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0028", "reference_id": "RHSA-2020:0028", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0028" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0204", "reference_id": "RHSA-2020:0204", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0204" }, { "reference_url": "https://usn.ubuntu.com/4183-1/", "reference_id": "USN-4183-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4183-1/" }, { "reference_url": "https://usn.ubuntu.com/4184-1/", "reference_id": "USN-4184-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4184-1/" }, { "reference_url": "https://usn.ubuntu.com/4185-1/", "reference_id": "USN-4185-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4185-1/" }, { "reference_url": "https://usn.ubuntu.com/4185-2/", "reference_id": "USN-4185-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4185-2/" }, { "reference_url": "https://usn.ubuntu.com/4186-1/", "reference_id": "USN-4186-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4186-1/" }, { "reference_url": "https://usn.ubuntu.com/4186-2/", "reference_id": "USN-4186-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4186-2/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-304.html", "reference_id": "XSA-304", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-304.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-12207", "XSA-304" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nhj6-dhyx-xbas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4194?format=api", "vulnerability_id": "VCID-ns7u-fmmr-5ba4", "summary": "TSX Asynchronous Abort speculative side channel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11135.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11135.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54558", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54842", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54966", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54947", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54912", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54938", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54908", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54958", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54957", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54969", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54951", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54928", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11139", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11139" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1753062", "reference_id": "1753062", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1753062" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://security.archlinux.org/ASA-201911-14", "reference_id": "ASA-201911-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201911-14" }, { "reference_url": "https://security.archlinux.org/AVG-1068", "reference_id": "AVG-1068", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1068" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3832", "reference_id": "RHSA-2019:3832", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3832" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3833", "reference_id": "RHSA-2019:3833", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3833" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3834", "reference_id": "RHSA-2019:3834", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3834" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3835", "reference_id": "RHSA-2019:3835", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3835" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3836", "reference_id": "RHSA-2019:3836", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3836" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3837", "reference_id": "RHSA-2019:3837", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3837" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3838", "reference_id": "RHSA-2019:3838", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3838" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3839", "reference_id": "RHSA-2019:3839", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3839" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3840", "reference_id": "RHSA-2019:3840", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3840" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3841", "reference_id": "RHSA-2019:3841", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3841" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3842", "reference_id": "RHSA-2019:3842", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3842" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3843", "reference_id": "RHSA-2019:3843", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3843" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3844", "reference_id": "RHSA-2019:3844", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3844" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3860", "reference_id": "RHSA-2019:3860", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3860" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3936", "reference_id": "RHSA-2019:3936", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3936" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0026", "reference_id": "RHSA-2020:0026", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0026" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0028", "reference_id": "RHSA-2020:0028", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0028" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0204", "reference_id": "RHSA-2020:0204", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0204" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0279", "reference_id": "RHSA-2020:0279", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0279" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0366", "reference_id": "RHSA-2020:0366", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0366" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0555", "reference_id": "RHSA-2020:0555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0666", "reference_id": "RHSA-2020:0666", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0666" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0730", "reference_id": "RHSA-2020:0730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0730" }, { "reference_url": "https://usn.ubuntu.com/4182-1/", "reference_id": "USN-4182-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4182-1/" }, { "reference_url": "https://usn.ubuntu.com/4182-2/", "reference_id": "USN-4182-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4182-2/" }, { "reference_url": "https://usn.ubuntu.com/4183-1/", "reference_id": "USN-4183-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4183-1/" }, { "reference_url": "https://usn.ubuntu.com/4184-1/", "reference_id": "USN-4184-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4184-1/" }, { "reference_url": "https://usn.ubuntu.com/4185-1/", "reference_id": "USN-4185-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4185-1/" }, { "reference_url": "https://usn.ubuntu.com/4185-2/", "reference_id": "USN-4185-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4185-2/" }, { "reference_url": "https://usn.ubuntu.com/4186-1/", "reference_id": "USN-4186-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4186-1/" }, { "reference_url": "https://usn.ubuntu.com/4186-2/", "reference_id": "USN-4186-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4186-2/" }, { "reference_url": "https://usn.ubuntu.com/4187-1/", "reference_id": "USN-4187-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4187-1/" }, { "reference_url": "https://usn.ubuntu.com/4188-1/", "reference_id": "USN-4188-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4188-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-305.html", "reference_id": "XSA-305", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-305.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-11135", "XSA-305" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ns7u-fmmr-5ba4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/3999?format=api", "vulnerability_id": "VCID-p3uc-18e9-skb4", "summary": "xenstore watch notifications lacking permission checks", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19055", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19246", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19381", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19432", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19149", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19229", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19281", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19286", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19239", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19185", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19145", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19155", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19164", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-115.html", "reference_id": "XSA-115", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-115.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29480", "XSA-115" ], "risk_score": 0.9, "exploitability": "0.5", "weighted_severity": "1.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p3uc-18e9-skb4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4238?format=api", "vulnerability_id": "VCID-p7ug-wwk5-63gb", "summary": "out of bounds event channels available to 32-bit x86 domains", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25600.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25600.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27816", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27866", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27906", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27698", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27766", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27808", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27814", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27772", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27715", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27723", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27697", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27658", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27605", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880156", "reference_id": "1880156", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1880156" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-342.html", "reference_id": "XSA-342", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-342.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25600", "XSA-342" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p7ug-wwk5-63gb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4178?format=api", "vulnerability_id": "VCID-pv8w-7nk4-u3eg", "summary": "x86: PV kernel context switch corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17347.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17347.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17347", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21292", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21155", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21306", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21315", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.2129", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21448", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21502", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21254", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21333", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21395", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21403", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21364", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.2131", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17347" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/25/8", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/8" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-293.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-293.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771444", "reference_id": "1771444", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771444" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929999", "reference_id": "929999", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929999" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17347", "reference_id": "CVE-2019-17347", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17347" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-293.html", "reference_id": "XSA-293", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-293.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17347" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pv8w-7nk4-u3eg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4172?format=api", "vulnerability_id": "VCID-pzt3-abab-4kdd", "summary": "x86 PV guest INVLPG-like flushes may leave stale TLB entries", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27674.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27674.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22151", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22309", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22352", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22137", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2222", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22274", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22294", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22252", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22193", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22194", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22188", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22142", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22002", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891089", "reference_id": "1891089", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891089" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-286.html", "reference_id": "XSA-286", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-286.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-27674", "XSA-286" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pzt3-abab-4kdd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4196?format=api", "vulnerability_id": "VCID-qg9d-zmph-vufm", "summary": "find_next_bit() issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19581.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19581.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28357", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28428", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28469", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28261", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28327", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2837", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28374", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28331", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28273", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28285", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28266", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2822", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28132", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1801083", "reference_id": "1801083", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1801083" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-307.html", "reference_id": "XSA-307", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-307.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-19581" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qg9d-zmph-vufm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4179?format=api", "vulnerability_id": "VCID-r1ca-najr-xuh6", "summary": "x86 shadow: Insufficient TLB flushing when using PCID", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17348.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17348.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17348", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40862", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40759", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40961", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.4093", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40851", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40944", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40973", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40899", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40948", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40955", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40938", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0019", "scoring_system": "epss", "scoring_elements": "0.40919", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17348" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17348", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17348" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/25/7", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/7" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-294.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-294.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1683956", "reference_id": "1683956", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1683956" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929992", "reference_id": "929992", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929992" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17348", "reference_id": "CVE-2019-17348", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17348" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-294.html", "reference_id": "XSA-294", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-294.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17348", "XSA-294" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r1ca-najr-xuh6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4141?format=api", "vulnerability_id": "VCID-rgt3-wkaw-eqca", "summary": "Information leak via side effects of speculative execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5754.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5754.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5754", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.87621", "scoring_system": "epss", "scoring_elements": "0.99463", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.87621", "scoring_system": "epss", "scoring_elements": "0.9947", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.87621", "scoring_system": "epss", "scoring_elements": "0.99469", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.87621", "scoring_system": "epss", "scoring_elements": "0.99466", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.87621", "scoring_system": "epss", "scoring_elements": "0.99465", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.87752", "scoring_system": "epss", "scoring_elements": "0.99464", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.87752", "scoring_system": "epss", "scoring_elements": "0.99463", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.87752", "scoring_system": "epss", "scoring_elements": "0.99462", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.87752", "scoring_system": "epss", "scoring_elements": "0.99466", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.87752", "scoring_system": "epss", "scoring_elements": "0.99467", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.88229", "scoring_system": "epss", "scoring_elements": "0.99495", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.88802", "scoring_system": "epss", "scoring_elements": "0.99522", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000407", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000407" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000410", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000410" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15868", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15868" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16939", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16939" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17448", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17448" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17449", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17449" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17450", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17450" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17558", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17558" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17805", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17805" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17807", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17807" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:N/A:N" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519781", "reference_id": "1519781", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519781" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852", "reference_id": "886852", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852" }, { "reference_url": "https://security.archlinux.org/ASA-201801-1", "reference_id": "ASA-201801-1", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-1" }, { "reference_url": "https://security.archlinux.org/ASA-201801-3", "reference_id": "ASA-201801-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-3" }, { "reference_url": "https://security.archlinux.org/ASA-201801-4", "reference_id": "ASA-201801-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-4" }, { "reference_url": "https://security.archlinux.org/ASA-201801-6", "reference_id": "ASA-201801-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-6" }, { "reference_url": "https://security.archlinux.org/AVG-552", "reference_id": "AVG-552", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-552" }, { "reference_url": "https://security.archlinux.org/AVG-571", "reference_id": "AVG-571", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-571" }, { "reference_url": "https://security.archlinux.org/AVG-574", "reference_id": "AVG-574", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-574" }, { "reference_url": "https://security.archlinux.org/AVG-577", "reference_id": "AVG-577", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-577" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0010", "reference_id": "RHSA-2018:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0016", "reference_id": "RHSA-2018:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0017", "reference_id": "RHSA-2018:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0018", "reference_id": "RHSA-2018:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0020", "reference_id": "RHSA-2018:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0021", "reference_id": "RHSA-2018:0021", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0021" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0022", "reference_id": "RHSA-2018:0022", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0022" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0292", "reference_id": "RHSA-2018:0292", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0292" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0464", "reference_id": "RHSA-2018:0464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1062", "reference_id": "RHSA-2018:1062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1129", "reference_id": "RHSA-2018:1129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1319", "reference_id": "RHSA-2018:1319", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1319" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1346", "reference_id": "RHSA-2018:1346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1374", "reference_id": "RHSA-2018:1374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1374" }, { "reference_url": "https://usn.ubuntu.com/3516-1/", "reference_id": "USN-3516-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3516-1/" }, { "reference_url": "https://usn.ubuntu.com/3522-1/", "reference_id": "USN-3522-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3522-1/" }, { "reference_url": "https://usn.ubuntu.com/3522-2/", "reference_id": "USN-3522-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3522-2/" }, { "reference_url": "https://usn.ubuntu.com/3523-1/", "reference_id": "USN-3523-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3523-1/" }, { "reference_url": "https://usn.ubuntu.com/3523-2/", "reference_id": "USN-3523-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3523-2/" }, { "reference_url": "https://usn.ubuntu.com/3524-1/", "reference_id": "USN-3524-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3524-1/" }, { "reference_url": "https://usn.ubuntu.com/3524-2/", "reference_id": "USN-3524-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3524-2/" }, { "reference_url": "https://usn.ubuntu.com/3525-1/", "reference_id": "USN-3525-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3525-1/" }, { "reference_url": "https://usn.ubuntu.com/3540-1/", "reference_id": "USN-3540-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3540-1/" }, { "reference_url": "https://usn.ubuntu.com/3540-2/", "reference_id": "USN-3540-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3540-2/" }, { "reference_url": "https://usn.ubuntu.com/3541-1/", "reference_id": "USN-3541-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3541-1/" }, { "reference_url": "https://usn.ubuntu.com/3541-2/", "reference_id": "USN-3541-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3541-2/" }, { "reference_url": "https://usn.ubuntu.com/3583-1/", "reference_id": "USN-3583-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3583-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-1/", "reference_id": "USN-3597-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3597-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-2/", "reference_id": "USN-3597-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3597-2/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-254.html", "reference_id": "XSA-254", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-254.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2017-5754" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rgt3-wkaw-eqca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4155?format=api", "vulnerability_id": "VCID-rn1h-xy8j-uqgs", "summary": "x86: Incorrect MSR_DEBUGCTL handling lets guests enable BTS", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15468.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15468.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15468", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30206", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30236", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30285", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30102", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30162", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30198", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30201", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30157", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30108", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30123", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.30106", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.3006", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00115", "scoring_system": "epss", "scoring_elements": "0.2999", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1610548", "reference_id": "1610548", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1610548" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-269.html", "reference_id": "XSA-269", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-269.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-15468", "XSA-269" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rn1h-xy8j-uqgs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4208?format=api", "vulnerability_id": "VCID-rqjg-umw7-vyfu", "summary": "Bad continuation handling in GNTTABOP_copy", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11742.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11742.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25791", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.256", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25697", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.2568", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25656", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25852", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25895", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25666", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25737", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25785", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25795", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25754", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25696", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4723" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2020/04/14/4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2020/04/14/4" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-318.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-318.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823942", "reference_id": "1823942", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823942" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11742", "reference_id": "CVE-2020-11742", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11742" }, { "reference_url": "https://security.gentoo.org/glsa/202005-08", "reference_id": "GLSA-202005-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-08" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-318.html", "reference_id": "XSA-318", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-318.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-11742", "XSA-318" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rqjg-umw7-vyfu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4162?format=api", "vulnerability_id": "VCID-tb5v-mhdb-wbem", "summary": "insufficient TLB flushing / improper large page mappings with AMD IOMMUs", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19961.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19961.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19961", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39631", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.3978", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39803", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39722", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39775", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.3979", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39799", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39763", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39747", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39797", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39768", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39685", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39505", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1647573", "reference_id": "1647573", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1647573" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-275.html", "reference_id": "XSA-275", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-275.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-19961" ], "risk_score": 3.6, "exploitability": "0.5", "weighted_severity": "7.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tb5v-mhdb-wbem" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4213?format=api", "vulnerability_id": "VCID-uvcp-ad38-2kcs", "summary": "Xenstore: wrong path length check", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19812", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19953", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20099", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20157", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19886", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19965", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20019", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20038", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19993", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19936", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19919", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19923", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.1992", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29479" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29481" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29484" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29485" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29486" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29570" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29571" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-323.html", "reference_id": "XSA-323", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-323.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-29482", "XSA-323" ], "risk_score": 0.9, "exploitability": "0.5", "weighted_severity": "1.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uvcp-ad38-2kcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4203?format=api", "vulnerability_id": "VCID-v17d-ecc6-97au", "summary": "multiple xenoprof issues", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11741.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11741.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29916", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29704", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29826", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.2978", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29959", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.30007", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.2982", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29882", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29918", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29924", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29878", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29828", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29846", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4723" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2020/04/14/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2020/04/14/1" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-313.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-313.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823913", "reference_id": "1823913", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1823913" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:4.13.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11741", "reference_id": "CVE-2020-11741", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:C/A:C" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11741" }, { "reference_url": "https://security.gentoo.org/glsa/202005-08", "reference_id": "GLSA-202005-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-08" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-313.html", "reference_id": "XSA-313", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-313.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-11741" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v17d-ecc6-97au" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4140?format=api", "vulnerability_id": "VCID-v8fp-rzfq-e3bs", "summary": "Information leak via side effects of speculative execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5715.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5715.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.88597", "scoring_system": "epss", "scoring_elements": "0.995", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.88597", "scoring_system": "epss", "scoring_elements": "0.99501", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99534", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99529", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.9953", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99533", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.89147", "scoring_system": "epss", "scoring_elements": "0.99538", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99534", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99539", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99533", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9016", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9016" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0861", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0861" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13220", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13220" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16912", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16912" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16913", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16913" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16914", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16914" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18017", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18017" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18193", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18193" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18203", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18203" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18216", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18216" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18218", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18218" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18222", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18222" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18224", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18224" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18241", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18241" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18257", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18257" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5753", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5753" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000004", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000004" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000199", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000199" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10471", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10471" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10472", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10472" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1065", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1065" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1066", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1066" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10981", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10981" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10982", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10982" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6927", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6927" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7492", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7492" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7757", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7757" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8087", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8087" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8822", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8822" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8897", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8897" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:N/A:N" }, { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securityfocus.com/bid/102376", "reference_id": "102376", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.securityfocus.com/bid/102376" }, { "reference_url": "http://www.securitytracker.com/id/1040071", "reference_id": "1040071", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.securitytracker.com/id/1040071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780", "reference_id": "1519780", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780" }, { "reference_url": "https://www.kb.cert.org/vuls/id/180049", "reference_id": "180049", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.kb.cert.org/vuls/id/180049" }, { "reference_url": "https://seclists.org/bugtraq/2019/Jun/36", "reference_id": "36", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://seclists.org/bugtraq/2019/Jun/36" }, { "reference_url": "https://www.exploit-db.com/exploits/43427/", "reference_id": "43427", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.exploit-db.com/exploits/43427/" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4609", "reference_id": "4609", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4609" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4611", "reference_id": "4611", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4611" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4613", "reference_id": "4613", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4613" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4614", "reference_id": "4614", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4614" }, { "reference_url": "http://www.kb.cert.org/vuls/id/584653", "reference_id": "584653", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.kb.cert.org/vuls/id/584653" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886532", "reference_id": "886532", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886532" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852", "reference_id": "886852", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852" }, { "reference_url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002", "reference_id": "ADV180002", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-254.html", "reference_id": "advisory-254.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-254.html" }, { "reference_url": "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr", "reference_id": "advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr" }, { "reference_url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-001.txt", "reference_id": "ARUBA-PSA-2018-001.txt", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-001.txt" }, { "reference_url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt", "reference_id": "ARUBA-PSA-2019-003.txt", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt" }, { "reference_url": "https://security.archlinux.org/ASA-201801-10", "reference_id": "ASA-201801-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-10" }, { "reference_url": "https://security.archlinux.org/AVG-557", "reference_id": "AVG-557", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-557" }, { "reference_url": "https://security.archlinux.org/AVG-558", "reference_id": "AVG-558", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-558" }, { "reference_url": "https://security.archlinux.org/AVG-559", "reference_id": "AVG-559", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-559" }, { "reference_url": "https://security.archlinux.org/AVG-582", "reference_id": "AVG-582", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-582" }, { "reference_url": "https://security.archlinux.org/AVG-583", "reference_id": "AVG-583", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-583" }, { "reference_url": "https://security.archlinux.org/AVG-987", "reference_id": "AVG-987", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-987" }, { "reference_url": "https://aws.amazon.com/de/security/security-bulletins/AWS-2018-013/", "reference_id": "AWS-2018-013", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://aws.amazon.com/de/security/security-bulletins/AWS-2018-013/" }, { "reference_url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel", "reference_id": "cisco-sa-20180104-cpusidechannel", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel" }, { "reference_url": "https://support.citrix.com/article/CTX231399", "reference_id": "CTX231399", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.citrix.com/article/CTX231399" }, { "reference_url": "https://security.paloaltonetworks.com/CVE-2017-5715", "reference_id": "CVE-2017-5715", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.paloaltonetworks.com/CVE-2017-5715" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/43427.c", "reference_id": "CVE-2017-5753;CVE-2017-5715", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/43427.c" }, { "reference_url": "https://spectreattack.com/spectre.pdf", "reference_id": "CVE-2017-5753;CVE-2017-5715", "reference_type": "exploit", "scores": [], "url": "https://spectreattack.com/spectre.pdf" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03805en_us", "reference_id": "display?docId=emr_na-hpesbhf03805en_us", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03805en_us" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us", "reference_id": "display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us" }, { "reference_url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:03.speculative_execution.asc", "reference_id": "FreeBSD-SA-18:03.speculative_execution.asc", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:03.speculative_execution.asc" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://support.f5.com/csp/article/K91229003", "reference_id": "K91229003", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.f5.com/csp/article/K91229003" }, { "reference_url": "https://support.lenovo.com/us/en/solutions/LEN-18282", "reference_id": "LEN-18282", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.lenovo.com/us/en/solutions/LEN-18282" }, { "reference_url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0001", "reference_id": "mitel-product-security-advisory-18-0001", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0001" }, { "reference_url": "https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/", "reference_id": "mitigations-landing-new-class-timing-attack", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00002.html", "reference_id": "msg00002.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00002.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00003.html", "reference_id": "msg00003.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00003.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00004.html", "reference_id": "msg00004.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00004.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00005.html", "reference_id": "msg00005.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00005.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00009.html", "reference_id": "msg00009.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00009.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00012.html", "reference_id": "msg00012.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00012.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00013.html", "reference_id": "msg00013.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00013.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00019.html", "reference_id": "msg00019.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00019.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00025.html", "reference_id": "msg00025.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00025.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20180104-0001/", "reference_id": "ntap-20180104-0001", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20180104-0001/" }, { "reference_url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html", "reference_id": "reading-privileged-memory-with-side.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0016", "reference_id": "RHSA-2018:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0017", "reference_id": "RHSA-2018:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0018", "reference_id": "RHSA-2018:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0020", "reference_id": "RHSA-2018:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0021", "reference_id": "RHSA-2018:0021", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0021" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0022", "reference_id": "RHSA-2018:0022", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0022" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0023", "reference_id": "RHSA-2018:0023", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0023" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0027", "reference_id": "RHSA-2018:0027", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0027" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0028", "reference_id": "RHSA-2018:0028", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0028" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0292", "reference_id": "RHSA-2018:0292", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:0292" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1062", "reference_id": "RHSA-2018:1062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1129", "reference_id": "RHSA-2018:1129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1130", "reference_id": "RHSA-2018:1130", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1130" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1196", "reference_id": "RHSA-2018:1196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1216", "reference_id": "RHSA-2018:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1252", "reference_id": "RHSA-2018:1252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1252" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1319", "reference_id": "RHSA-2018:1319", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1319" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1346", "reference_id": "RHSA-2018:1346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1967", "reference_id": "RHSA-2018:1967", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1967" }, { "reference_url": "https://spectreattack.com/", "reference_id": "spectreattack.com", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://spectreattack.com/" }, { "reference_url": "http://packetstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.html", "reference_id": "Spectre-Information-Disclosure-Proof-Of-Concept.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://packetstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.html" }, { "reference_url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution", "reference_id": "speculativeexecution", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution" }, { "reference_url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability", "reference_id": "speculative-processor-vulnerability", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf", "reference_id": "ssa-608355.pdf", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf" }, { "reference_url": "https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/", "reference_id": "suse-addresses-meltdown-spectre-vulnerabilities", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/" }, { "reference_url": "https://www.synology.com/support/security/Synology_SA_18_01", "reference_id": "Synology_SA_18_01", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.synology.com/support/security/Synology_SA_18_01" }, { "reference_url": "https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html", "reference_id": "todays-cpu-vulnerability-what-you-need.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html" }, { "reference_url": "https://usn.ubuntu.com/usn/usn-3516-1/", "reference_id": "usn-3516-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/usn/usn-3516-1/" }, { "reference_url": "https://usn.ubuntu.com/3516-1/", "reference_id": "USN-3516-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3516-1/" }, { "reference_url": "https://usn.ubuntu.com/3530-1/", "reference_id": "USN-3530-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3530-1/" }, { "reference_url": "https://usn.ubuntu.com/3531-1/", "reference_id": "USN-3531-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3531-1/" }, { "reference_url": "https://usn.ubuntu.com/3531-3/", "reference_id": "USN-3531-3", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3531-3/" }, { "reference_url": "https://usn.ubuntu.com/3540-1/", "reference_id": "USN-3540-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3540-1/" }, { "reference_url": "https://usn.ubuntu.com/3540-2/", "reference_id": "USN-3540-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3540-2/" }, { "reference_url": "https://usn.ubuntu.com/3541-1/", "reference_id": "USN-3541-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3541-1/" }, { "reference_url": "https://usn.ubuntu.com/3541-2/", "reference_id": "USN-3541-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3541-2/" }, { "reference_url": "https://usn.ubuntu.com/3542-1/", "reference_id": "USN-3542-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3542-1/" }, { "reference_url": "https://usn.ubuntu.com/3542-2/", "reference_id": "USN-3542-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3542-2/" }, { "reference_url": "https://usn.ubuntu.com/3549-1/", "reference_id": "USN-3549-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3549-1/" }, { "reference_url": "https://usn.ubuntu.com/3560-1/", "reference_id": "USN-3560-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3560-1/" }, { "reference_url": "https://usn.ubuntu.com/3561-1/", "reference_id": "USN-3561-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3561-1/" }, { "reference_url": "https://usn.ubuntu.com/3580-1/", "reference_id": "USN-3580-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3580-1/" }, { "reference_url": "https://usn.ubuntu.com/3581-1/", "reference_id": "USN-3581-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3581-1/" }, { "reference_url": "https://usn.ubuntu.com/3581-2/", "reference_id": "USN-3581-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3581-2/" }, { "reference_url": "https://usn.ubuntu.com/3582-1/", "reference_id": "USN-3582-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3582-1/" }, { "reference_url": "https://usn.ubuntu.com/3582-2/", "reference_id": "USN-3582-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3582-2/" }, { "reference_url": "https://usn.ubuntu.com/3594-1/", "reference_id": "USN-3594-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3594-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-1/", "reference_id": "USN-3597-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3597-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-2/", "reference_id": "USN-3597-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3597-2/" }, { "reference_url": "https://usn.ubuntu.com/3620-2/", "reference_id": "USN-3620-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3620-2/" }, { "reference_url": "https://usn.ubuntu.com/3690-1/", "reference_id": "USN-3690-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3690-1/" }, { "reference_url": "https://usn.ubuntu.com/3777-3/", "reference_id": "USN-3777-3", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3777-3/" }, { "reference_url": "https://cert.vde.com/en-us/advisories/vde-2018-002", "reference_id": "vde-2018-002", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert.vde.com/en-us/advisories/vde-2018-002" }, { "reference_url": "https://cert.vde.com/en-us/advisories/vde-2018-003", "reference_id": "vde-2018-003", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert.vde.com/en-us/advisories/vde-2018-003" }, { "reference_url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html", "reference_id": "VMSA-2018-0002.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html" }, { "reference_url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0004.html", "reference_id": "VMSA-2018-0004.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0004.html" }, { "reference_url": "https://www.vmware.com/security/advisories/VMSA-2018-0007.html", "reference_id": "VMSA-2018-0007.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/security/advisories/VMSA-2018-0007.html" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-254.html", "reference_id": "XSA-254", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-254.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2017-5715" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v8fp-rzfq-e3bs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4237?format=api", "vulnerability_id": "VCID-vb2u-yc2z-ayh5", "summary": "Missing memory barriers when accessing/allocating an event channel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25603.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25603.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21923", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22085", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22135", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21911", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21992", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22047", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22062", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22021", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21961", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.2196", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21956", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21913", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21767", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877366", "reference_id": "1877366", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1877366" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-340.html", "reference_id": "XSA-340", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-340.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25603", "XSA-340" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vb2u-yc2z-ayh5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4163?format=api", "vulnerability_id": "VCID-veqg-epht-cuaz", "summary": "insufficient TLB flushing / improper large page mappings with AMD IOMMUs", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19962.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19962.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19962", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39631", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.3978", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39803", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39722", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39775", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.3979", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39799", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39763", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39747", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39797", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39768", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39685", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00181", "scoring_system": "epss", "scoring_elements": "0.39505", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1647573", "reference_id": "1647573", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1647573" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-275.html", "reference_id": "XSA-275", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-275.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-19962", "XSA-275" ], "risk_score": 3.6, "exploitability": "0.5", "weighted_severity": "7.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-veqg-epht-cuaz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4183?format=api", "vulnerability_id": "VCID-vh89-pyaz-xbdg", "summary": "Microarchitectural Data Sampling speculative side channel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12126.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12126.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12126", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65634", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65683", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65713", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65678", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.6573", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65742", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65763", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65748", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65719", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65754", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65767", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65753", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65766", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12126" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1646781", "reference_id": "1646781", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1646781" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129", "reference_id": "929129", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1155", "reference_id": "RHSA-2019:1155", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1167", "reference_id": "RHSA-2019:1167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1168", "reference_id": "RHSA-2019:1168", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1168" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1169", "reference_id": "RHSA-2019:1169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1170", "reference_id": "RHSA-2019:1170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1171", "reference_id": "RHSA-2019:1171", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1171" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1172", "reference_id": "RHSA-2019:1172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1172" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1174", "reference_id": "RHSA-2019:1174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1175", "reference_id": "RHSA-2019:1175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1176", "reference_id": "RHSA-2019:1176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1177", "reference_id": "RHSA-2019:1177", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1177" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1178", "reference_id": "RHSA-2019:1178", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1178" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1179", "reference_id": "RHSA-2019:1179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1180", "reference_id": "RHSA-2019:1180", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1180" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1181", "reference_id": "RHSA-2019:1181", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1181" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1182", "reference_id": "RHSA-2019:1182", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1182" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1183", "reference_id": "RHSA-2019:1183", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1183" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1184", "reference_id": "RHSA-2019:1184", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1184" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1185", "reference_id": "RHSA-2019:1185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1186", "reference_id": "RHSA-2019:1186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1187", "reference_id": "RHSA-2019:1187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1188", "reference_id": "RHSA-2019:1188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1189", "reference_id": "RHSA-2019:1189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1190", "reference_id": "RHSA-2019:1190", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1190" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1193", "reference_id": "RHSA-2019:1193", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1193" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1194", "reference_id": "RHSA-2019:1194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1195", "reference_id": "RHSA-2019:1195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1196", "reference_id": "RHSA-2019:1196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1197", "reference_id": "RHSA-2019:1197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1198", "reference_id": "RHSA-2019:1198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1199", "reference_id": "RHSA-2019:1199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1199" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1200", "reference_id": "RHSA-2019:1200", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1200" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1201", "reference_id": "RHSA-2019:1201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1202", "reference_id": "RHSA-2019:1202", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1202" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1203", "reference_id": "RHSA-2019:1203", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1203" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1204", "reference_id": "RHSA-2019:1204", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1204" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1205", "reference_id": "RHSA-2019:1205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1206", "reference_id": "RHSA-2019:1206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1207", "reference_id": "RHSA-2019:1207", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1207" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1208", "reference_id": "RHSA-2019:1208", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1208" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1209", "reference_id": "RHSA-2019:1209", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1209" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1455", "reference_id": "RHSA-2019:1455", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1455" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3977-1/", "reference_id": "USN-3977-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-1/" }, { "reference_url": "https://usn.ubuntu.com/3977-2/", "reference_id": "USN-3977-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-2/" }, { "reference_url": "https://usn.ubuntu.com/3977-3/", "reference_id": "USN-3977-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-3/" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" }, { "reference_url": "https://usn.ubuntu.com/3979-1/", "reference_id": "USN-3979-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3979-1/" }, { "reference_url": "https://usn.ubuntu.com/3980-1/", "reference_id": "USN-3980-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3980-1/" }, { "reference_url": "https://usn.ubuntu.com/3980-2/", "reference_id": "USN-3980-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3980-2/" }, { "reference_url": "https://usn.ubuntu.com/3981-1/", "reference_id": "USN-3981-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3981-1/" }, { "reference_url": "https://usn.ubuntu.com/3981-2/", "reference_id": "USN-3981-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3981-2/" }, { "reference_url": "https://usn.ubuntu.com/3982-1/", "reference_id": "USN-3982-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3982-1/" }, { "reference_url": "https://usn.ubuntu.com/3982-2/", "reference_id": "USN-3982-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3982-2/" }, { "reference_url": "https://usn.ubuntu.com/3983-1/", "reference_id": "USN-3983-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3983-1/" }, { "reference_url": "https://usn.ubuntu.com/3983-2/", "reference_id": "USN-3983-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3983-2/" }, { "reference_url": "https://usn.ubuntu.com/3984-1/", "reference_id": "USN-3984-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3984-1/" }, { "reference_url": "https://usn.ubuntu.com/3985-1/", "reference_id": "USN-3985-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3985-1/" }, { "reference_url": "https://usn.ubuntu.com/3985-2/", "reference_id": "USN-3985-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3985-2/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-297.html", "reference_id": "XSA-297", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-297.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-12126", "XSA-297" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vh89-pyaz-xbdg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4167?format=api", "vulnerability_id": "VCID-werg-d7s2-kfbw", "summary": "x86: DoS from attempting to use INVPCID with a non-canonical addresses", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19965.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19965.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19965", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39454", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39603", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39626", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39542", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39596", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39612", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39622", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39585", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39569", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39619", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39589", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39504", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0018", "scoring_system": "epss", "scoring_elements": "0.39324", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19965" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19965" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19966" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19967" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1647588", "reference_id": "1647588", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1647588" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-279.html", "reference_id": "XSA-279", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-279.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-19965", "XSA-279" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-werg-d7s2-kfbw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4190?format=api", "vulnerability_id": "VCID-wqv9-j35n-aqen", "summary": "add-to-physmap can be abused to DoS Arm hosts", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18423.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18423.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89876", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89944", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89933", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89928", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.8988", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89892", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89897", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89913", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89919", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89926", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89924", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89917", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.05187", "scoring_system": "epss", "scoring_elements": "0.89931", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/31/4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/31/4" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-301.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-301.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771344", "reference_id": "1771344", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1771344" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:arm:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:arm:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:arm:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18423", "reference_id": "CVE-2019-18423", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:C/I:C/A:C" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18423" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-301.html", "reference_id": "XSA-301", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-301.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-18423", "XSA-301" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wqv9-j35n-aqen" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4209?format=api", "vulnerability_id": "VCID-wvar-kt63-dkd5", "summary": "inverted code paths in x86 dirty VRAM tracking", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15563.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15563.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22683", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22858", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22902", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22695", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22771", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22823", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22845", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22808", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22751", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22765", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22761", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2272", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22557", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851471", "reference_id": "1851471", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851471" }, { "reference_url": "https://security.gentoo.org/glsa/202007-02", "reference_id": "GLSA-202007-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202007-02" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-319.html", "reference_id": "XSA-319", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-319.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-15563", "XSA-319" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wvar-kt63-dkd5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4239?format=api", "vulnerability_id": "VCID-xe4j-gg7f-wyfa", "summary": "races with evtchn_reset()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25599.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22299", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22465", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2251", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22381", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22436", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22457", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22416", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2236", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22379", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22375", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22323", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22174", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25602" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25603" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25604" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879567", "reference_id": "1879567", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879567" }, { "reference_url": "https://security.gentoo.org/glsa/202011-06", "reference_id": "GLSA-202011-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-06" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-343.html", "reference_id": "XSA-343", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-343.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-25599", "XSA-343" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xe4j-gg7f-wyfa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4224?format=api", "vulnerability_id": "VCID-xet6-w2vq-67eq", "summary": "Missing alignment check in VCPUOP_register_vcpu_info", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15564.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15564.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23887", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.24006", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.24046", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23832", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23898", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23945", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23961", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23917", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23863", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23874", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23864", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23844", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23725", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11739" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11741" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11742" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11743" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15563" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15564" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15567" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851470", "reference_id": "1851470", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851470" }, { "reference_url": "https://security.gentoo.org/glsa/202007-02", "reference_id": "GLSA-202007-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202007-02" }, { "reference_url": "https://usn.ubuntu.com/5617-1/", "reference_id": "USN-5617-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5617-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-327.html", "reference_id": "XSA-327", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-327.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2020-15564", "XSA-327" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xet6-w2vq-67eq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4166?format=api", "vulnerability_id": "VCID-xubx-wxc9-tfay", "summary": "x86: Nested VT-x usable even when disabled", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18883.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18883.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18883", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38394", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38531", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38556", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38419", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38469", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38477", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38492", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38455", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38429", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38456", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38392", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00172", "scoring_system": "epss", "scoring_elements": "0.38235", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18883" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18883", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18883" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1643116", "reference_id": "1643116", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1643116" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-278.html", "reference_id": "XSA-278", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-278.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-18883", "XSA-278" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xubx-wxc9-tfay" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4158?format=api", "vulnerability_id": "VCID-yh4r-yysd-1ua5", "summary": "oxenstored does not apply quota-maxentity", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15470.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15470.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15470", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39828", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39974", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.40002", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39923", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39976", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.3999", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.4", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39964", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39944", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39994", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39966", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39888", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00182", "scoring_system": "epss", "scoring_elements": "0.39714", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15470" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15468" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15469" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15470" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3620" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3646" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1610552", "reference_id": "1610552", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1610552" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-272.html", "reference_id": "XSA-272", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-272.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-15470", "XSA-272" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yh4r-yysd-1ua5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4185?format=api", "vulnerability_id": "VCID-z9r8-s6v7-zkgd", "summary": "Microarchitectural Data Sampling speculative side channel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12130.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12130.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12130", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67464", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.675", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67521", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67551", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67565", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67588", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67589", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67568", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67574", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67541", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00538", "scoring_system": "epss", "scoring_elements": "0.67576", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00642", "scoring_system": "epss", "scoring_elements": "0.70683", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12130" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1646784", "reference_id": "1646784", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1646784" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129", "reference_id": "929129", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929129" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1155", "reference_id": "RHSA-2019:1155", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1167", "reference_id": "RHSA-2019:1167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1168", "reference_id": "RHSA-2019:1168", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1168" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1169", "reference_id": "RHSA-2019:1169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1170", "reference_id": "RHSA-2019:1170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1171", "reference_id": "RHSA-2019:1171", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1171" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1172", "reference_id": "RHSA-2019:1172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1172" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1174", "reference_id": "RHSA-2019:1174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1175", "reference_id": "RHSA-2019:1175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1176", "reference_id": "RHSA-2019:1176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1177", "reference_id": "RHSA-2019:1177", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1177" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1178", "reference_id": "RHSA-2019:1178", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1178" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1179", "reference_id": "RHSA-2019:1179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1180", "reference_id": "RHSA-2019:1180", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1180" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1181", "reference_id": "RHSA-2019:1181", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1181" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1182", "reference_id": "RHSA-2019:1182", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1182" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1183", "reference_id": "RHSA-2019:1183", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1183" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1184", "reference_id": "RHSA-2019:1184", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1184" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1185", "reference_id": "RHSA-2019:1185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1186", "reference_id": "RHSA-2019:1186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1187", "reference_id": "RHSA-2019:1187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1188", "reference_id": "RHSA-2019:1188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1189", "reference_id": "RHSA-2019:1189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1190", "reference_id": "RHSA-2019:1190", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1190" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1193", "reference_id": "RHSA-2019:1193", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1193" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1194", "reference_id": "RHSA-2019:1194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1195", "reference_id": "RHSA-2019:1195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1196", "reference_id": "RHSA-2019:1196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1197", "reference_id": "RHSA-2019:1197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1198", "reference_id": "RHSA-2019:1198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1199", "reference_id": "RHSA-2019:1199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1199" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1200", "reference_id": "RHSA-2019:1200", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1200" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1201", "reference_id": "RHSA-2019:1201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1202", "reference_id": "RHSA-2019:1202", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1202" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1203", "reference_id": "RHSA-2019:1203", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1203" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1204", "reference_id": "RHSA-2019:1204", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1204" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1205", "reference_id": "RHSA-2019:1205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1206", "reference_id": "RHSA-2019:1206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1207", "reference_id": "RHSA-2019:1207", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1207" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1208", "reference_id": "RHSA-2019:1208", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1208" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1209", "reference_id": "RHSA-2019:1209", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1209" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1455", "reference_id": "RHSA-2019:1455", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1455" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3977-1/", "reference_id": "USN-3977-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-1/" }, { "reference_url": "https://usn.ubuntu.com/3977-2/", "reference_id": "USN-3977-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-2/" }, { "reference_url": "https://usn.ubuntu.com/3977-3/", "reference_id": "USN-3977-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3977-3/" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" }, { "reference_url": "https://usn.ubuntu.com/3979-1/", "reference_id": "USN-3979-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3979-1/" }, { "reference_url": "https://usn.ubuntu.com/3980-1/", "reference_id": "USN-3980-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3980-1/" }, { "reference_url": "https://usn.ubuntu.com/3980-2/", "reference_id": "USN-3980-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3980-2/" }, { "reference_url": "https://usn.ubuntu.com/3981-1/", "reference_id": "USN-3981-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3981-1/" }, { "reference_url": "https://usn.ubuntu.com/3981-2/", "reference_id": "USN-3981-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3981-2/" }, { "reference_url": "https://usn.ubuntu.com/3982-1/", "reference_id": "USN-3982-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3982-1/" }, { "reference_url": "https://usn.ubuntu.com/3982-2/", "reference_id": "USN-3982-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3982-2/" }, { "reference_url": "https://usn.ubuntu.com/3983-1/", "reference_id": "USN-3983-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3983-1/" }, { "reference_url": "https://usn.ubuntu.com/3983-2/", "reference_id": "USN-3983-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3983-2/" }, { "reference_url": "https://usn.ubuntu.com/3984-1/", "reference_id": "USN-3984-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3984-1/" }, { "reference_url": "https://usn.ubuntu.com/3985-1/", "reference_id": "USN-3985-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3985-1/" }, { "reference_url": "https://usn.ubuntu.com/3985-2/", "reference_id": "USN-3985-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3985-2/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-297.html", "reference_id": "XSA-297", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-297.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2018-12130" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z9r8-s6v7-zkgd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4171?format=api", "vulnerability_id": "VCID-zh3b-cxzx-abc6", "summary": "race with pass-through device hotplug", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17341.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17341.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17341", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28384", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2815", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28292", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28246", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28458", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.285", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28291", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28356", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.284", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28403", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2836", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28302", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28313", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17341" }, { "reference_url": "https://seclists.org/bugtraq/2020/Jan/21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Jan/21" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4602", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4602" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/10/25/6", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/6" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-285.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://xenbits.xen.org/xsa/advisory-285.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679332", "reference_id": "1679332", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1679332" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929998", "reference_id": "929998", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929998" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17341", "reference_id": "CVE-2019-17341", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:C/A:C" }, { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17341" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-285.html", "reference_id": "XSA-285", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-285.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-17341" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zh3b-cxzx-abc6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4198?format=api", "vulnerability_id": "VCID-zm6z-2dnk-hyf8", "summary": "VMX: VMentry failure with debug exceptions and blocked states", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19583.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19583.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83875", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83888", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83904", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83907", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.8393", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83937", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83953", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83947", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83943", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83967", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83968", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.8397", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02069", "scoring_system": "epss", "scoring_elements": "0.83996", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19583" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11135" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17349" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17350" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18420" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18421" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18423" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18425" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19577" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19579" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19580" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19581" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19583" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778171", "reference_id": "1778171", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1778171" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944", "reference_id": "947944", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947944" }, { "reference_url": "https://security.gentoo.org/glsa/202003-56", "reference_id": "GLSA-202003-56", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-56" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-308.html", "reference_id": "XSA-308", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-308.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036900?format=api", "purl": "pkg:deb/debian/xen@4.8.5.final%2Bshim4.10.4-1%2Bdeb9u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1phh-s2rg-4ugh" }, { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2ke1-fmf7-7ydt" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-2yke-a3ka-ubaq" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-3488-1xdv-4kc8" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3pzv-55sc-37ge" }, { "vulnerability": "VCID-3qjm-4egs-1kax" }, { "vulnerability": "VCID-3tjz-1jvw-8uc4" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-493n-hphq-akhy" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-61zz-uk19-r7b2" }, { "vulnerability": "VCID-64mf-wa98-rkha" }, { "vulnerability": "VCID-6b1e-39na-b7gf" }, { "vulnerability": "VCID-6jsn-7538-a7ha" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6vxj-m9ud-5ke9" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7ghz-5whc-u3ee" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7vn6-5h93-27hn" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-85jp-mmaq-n7ck" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-898q-dzb7-3qe7" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9ed4-5mca-kfdv" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9yut-bdsw-gkfy" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-a3by-shse-q3fr" }, { "vulnerability": "VCID-an7r-pjrv-pyde" }, { "vulnerability": "VCID-aw3c-9db1-a7eh" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bd46-xyhc-8uf5" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-cbtr-g13y-tbhz" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-cuab-yybg-6uhs" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-favj-4du1-qqe8" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-g9hd-27my-6baj" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-gsas-zqvf-2khf" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k45n-139y-pyeq" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-kf1y-ck1r-1kh8" }, { "vulnerability": "VCID-km9e-c58c-jkbp" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcd1-vc14-y3g5" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-mjsu-m9mt-ukdx" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-nhj6-dhyx-xbas" }, { "vulnerability": "VCID-ns7u-fmmr-5ba4" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pv8w-7nk4-u3eg" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qg9d-zmph-vufm" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-r1ca-najr-xuh6" }, { "vulnerability": "VCID-rgt3-wkaw-eqca" }, { "vulnerability": "VCID-rn1h-xy8j-uqgs" }, { "vulnerability": "VCID-rqjg-umw7-vyfu" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-tb5v-mhdb-wbem" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-v17d-ecc6-97au" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-veqg-epht-cuaz" }, { "vulnerability": "VCID-vh89-pyaz-xbdg" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-werg-d7s2-kfbw" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-wqv9-j35n-aqen" }, { "vulnerability": "VCID-wvar-kt63-dkd5" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-xet6-w2vq-67eq" }, { "vulnerability": "VCID-xubx-wxc9-tfay" }, { "vulnerability": "VCID-yh4r-yysd-1ua5" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-z9r8-s6v7-zkgd" }, { "vulnerability": "VCID-zh3b-cxzx-abc6" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zm6z-2dnk-hyf8" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.8.5.final%252Bshim4.10.4-1%252Bdeb9u12" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" } ], "aliases": [ "CVE-2019-19583", "XSA-308" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zm6z-2dnk-hyf8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4247?format=api", "vulnerability_id": "VCID-zrxf-3w1d-t3ba", "summary": "Information leak via power sidechannel", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28368.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28368.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20591", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20734", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20793", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20512", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20589", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20648", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20668", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20626", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20574", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20559", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20556", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20551", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20436", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28368" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27670" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27671" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27674" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28368" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1897145", "reference_id": "1897145", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1897145" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-351.html", "reference_id": "XSA-351", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-351.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037808?format=api", "purl": "pkg:deb/debian/xen@4.11.4%2B107-gef32c7afa2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1wgc-r96w-7kg9" }, { "vulnerability": "VCID-1wtd-67ef-1qej" }, { "vulnerability": "VCID-1x3w-n7ms-eqeh" }, { "vulnerability": "VCID-28t2-hng7-tfe5" }, { "vulnerability": "VCID-2n9p-6t7s-kqc5" }, { "vulnerability": "VCID-2uap-2vm1-efcr" }, { "vulnerability": "VCID-32w3-vmcb-wfd9" }, { "vulnerability": "VCID-34gr-dtsz-1fab" }, { "vulnerability": "VCID-34ng-ftbx-e3cm" }, { "vulnerability": "VCID-39t8-p1q7-eyag" }, { "vulnerability": "VCID-3d53-4qtr-myhm" }, { "vulnerability": "VCID-3pxf-xndw-5fft" }, { "vulnerability": "VCID-3whm-8fyv-zyhd" }, { "vulnerability": "VCID-416b-93m6-jyby" }, { "vulnerability": "VCID-42ma-8ash-j7c8" }, { "vulnerability": "VCID-4429-qf2w-jqg3" }, { "vulnerability": "VCID-4spa-usqt-93b2" }, { "vulnerability": "VCID-5cw7-rv5f-jfaq" }, { "vulnerability": "VCID-5dbd-kz24-6fc1" }, { "vulnerability": "VCID-6kh6-edk7-xkcc" }, { "vulnerability": "VCID-6xbp-t4qh-tbhv" }, { "vulnerability": "VCID-77st-3475-5kdr" }, { "vulnerability": "VCID-7d5b-66n7-zbe1" }, { "vulnerability": "VCID-7ek3-weqx-9fhs" }, { "vulnerability": "VCID-7etc-u5ya-zued" }, { "vulnerability": "VCID-7t5h-jy8h-t3d4" }, { "vulnerability": "VCID-7wyt-uh2c-a3ha" }, { "vulnerability": "VCID-7ysh-usku-c3dz" }, { "vulnerability": "VCID-7zpj-3par-s3b5" }, { "vulnerability": "VCID-87tq-2me2-d3bb" }, { "vulnerability": "VCID-8cb8-vq2c-q3e9" }, { "vulnerability": "VCID-8r8y-8bq2-jufj" }, { "vulnerability": "VCID-91hk-73kq-83g6" }, { "vulnerability": "VCID-9hr5-p18q-7qb8" }, { "vulnerability": "VCID-9s43-gewn-bycc" }, { "vulnerability": "VCID-9zqd-3x84-43gc" }, { "vulnerability": "VCID-az8d-xrb4-3ug4" }, { "vulnerability": "VCID-b7tb-ns1t-fyaw" }, { "vulnerability": "VCID-bc6f-wu8g-5yb4" }, { "vulnerability": "VCID-bs56-1z79-uqbt" }, { "vulnerability": "VCID-bxae-85uh-uyek" }, { "vulnerability": "VCID-bxb7-7gpw-qybb" }, { "vulnerability": "VCID-bzve-5gwu-8ydb" }, { "vulnerability": "VCID-csy7-esn4-u3gq" }, { "vulnerability": "VCID-d3ad-6tme-bfem" }, { "vulnerability": "VCID-dfjm-gwzm-jqbt" }, { "vulnerability": "VCID-dgm4-ye4m-1fcq" }, { "vulnerability": "VCID-dj1v-h79p-9ydz" }, { "vulnerability": "VCID-dqy9-zkvw-e3gk" }, { "vulnerability": "VCID-drhd-ytb7-u3em" }, { "vulnerability": "VCID-e96u-uwba-kfg5" }, { "vulnerability": "VCID-eb8v-p31a-yuhu" }, { "vulnerability": "VCID-eka3-u8e5-3uad" }, { "vulnerability": "VCID-ep7n-um5m-ekgk" }, { "vulnerability": "VCID-fekb-fbhz-y7g7" }, { "vulnerability": "VCID-fhbs-3nvf-tbha" }, { "vulnerability": "VCID-fqt9-2esb-ffan" }, { "vulnerability": "VCID-g72t-7kx1-abcs" }, { "vulnerability": "VCID-gdsj-4cbx-ufep" }, { "vulnerability": "VCID-gj1u-mbaj-kyc5" }, { "vulnerability": "VCID-h9c6-yw5r-v3ex" }, { "vulnerability": "VCID-hg4z-ad3f-fbc2" }, { "vulnerability": "VCID-hsau-swt9-kyf7" }, { "vulnerability": "VCID-hx7j-eymk-4ygk" }, { "vulnerability": "VCID-hyup-47wa-pfac" }, { "vulnerability": "VCID-jwdv-qe4x-yfgw" }, { "vulnerability": "VCID-k5j4-3xmv-a7bk" }, { "vulnerability": "VCID-kcj6-ua4t-ybgj" }, { "vulnerability": "VCID-knqd-zktw-cydm" }, { "vulnerability": "VCID-mcs2-ndqd-tydv" }, { "vulnerability": "VCID-mf8g-nbkw-f7gr" }, { "vulnerability": "VCID-n3t2-m6br-ufb3" }, { "vulnerability": "VCID-n7pg-b7kc-wkew" }, { "vulnerability": "VCID-ndz3-372h-8fhk" }, { "vulnerability": "VCID-p3uc-18e9-skb4" }, { "vulnerability": "VCID-p7ug-wwk5-63gb" }, { "vulnerability": "VCID-pb8n-hmsc-syfw" }, { "vulnerability": "VCID-pphm-ygb7-q7g2" }, { "vulnerability": "VCID-pzt3-abab-4kdd" }, { "vulnerability": "VCID-qnew-xqte-kbej" }, { "vulnerability": "VCID-qprv-989b-k3d3" }, { "vulnerability": "VCID-s4nf-p69f-pue8" }, { "vulnerability": "VCID-td6e-x2qb-syg3" }, { "vulnerability": "VCID-uunr-69dt-q7fn" }, { "vulnerability": "VCID-uvcp-ad38-2kcs" }, { "vulnerability": "VCID-vb2u-yc2z-ayh5" }, { "vulnerability": "VCID-vs9k-akwv-h3ak" }, { "vulnerability": "VCID-w2ch-guy5-6ye9" }, { "vulnerability": "VCID-wh75-sc4f-qqc1" }, { "vulnerability": "VCID-xcvw-eex8-j3bf" }, { "vulnerability": "VCID-xe4j-gg7f-wyfa" }, { "vulnerability": "VCID-z3g4-1vhq-97dj" }, { "vulnerability": "VCID-z3qj-cnxq-pkgq" }, { "vulnerability": "VCID-z8zf-cqkb-guge" }, { "vulnerability": "VCID-zkyv-h5at-xkgq" }, { "vulnerability": "VCID-zrxf-3w1d-t3ba" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/994412?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tb8-t91c-63bp" }, { "vulnerability": "VCID-26a9-9zz3-wfhh" }, { "vulnerability": "VCID-2trm-w3ww-cfhk" }, { "vulnerability": "VCID-3bw4-631f-e7h6" }, { "vulnerability": "VCID-3se4-qv6j-xqfq" }, { "vulnerability": "VCID-3vdg-5g64-wkbt" }, { "vulnerability": "VCID-46ad-1k9n-j3hm" }, { "vulnerability": "VCID-4cdt-ycjx-6ub4" }, { "vulnerability": "VCID-4k7p-3g95-n7dm" }, { "vulnerability": "VCID-4pra-prf3-1uff" }, { "vulnerability": "VCID-4rmg-db7g-u3hs" }, { "vulnerability": "VCID-5ktg-bhh1-ubbz" }, { "vulnerability": "VCID-5u88-jt28-cfb6" }, { "vulnerability": "VCID-6dax-cddv-7bbs" }, { "vulnerability": "VCID-6jqj-2qwn-8qd9" }, { "vulnerability": "VCID-8k1q-b2kj-w7hh" }, { "vulnerability": "VCID-8tv5-zxmm-r3fk" }, { "vulnerability": "VCID-97zm-r9b6-uqdu" }, { "vulnerability": "VCID-b57c-x3pw-7fb7" }, { "vulnerability": "VCID-bhdk-jmss-4qc8" }, { "vulnerability": "VCID-byu1-7n9c-5fes" }, { "vulnerability": "VCID-c4xu-szkm-1kh6" }, { "vulnerability": "VCID-ee3z-24pr-kqcm" }, { "vulnerability": "VCID-ejhc-6yqt-gkgv" }, { "vulnerability": "VCID-evcg-2z3p-gbch" }, { "vulnerability": "VCID-h9hz-vur7-kyhg" }, { "vulnerability": "VCID-j22f-mbqe-a7dk" }, { "vulnerability": "VCID-p2fk-8snj-x7dy" }, { "vulnerability": "VCID-psaa-jdr7-e3fm" }, { "vulnerability": "VCID-q3p3-tgay-6kcs" }, { "vulnerability": "VCID-qpfc-3296-9ub3" }, { "vulnerability": "VCID-qsma-2ufh-jybe" }, { "vulnerability": "VCID-rdub-9bhg-nbc6" }, { "vulnerability": "VCID-rk2f-yqbb-nyd2" }, { "vulnerability": "VCID-rt5n-e4wq-p3gh" }, { "vulnerability": "VCID-tjgh-waa3-wqgk" }, { "vulnerability": "VCID-upju-tcz7-efg1" }, { "vulnerability": "VCID-uv8m-bj4c-8fes" }, { "vulnerability": "VCID-vv23-mvyn-87hg" }, { "vulnerability": "VCID-wd4s-jxuf-skbp" }, { "vulnerability": "VCID-wz1m-aeaf-nkg7" }, { "vulnerability": "VCID-xqpz-y83m-4uc4" }, { "vulnerability": "VCID-ye1t-qhtx-sucm" }, { "vulnerability": "VCID-z9rm-9p2q-wfag" }, { "vulnerability": "VCID-zkeg-d5d5-vbda" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1" } ], "aliases": [ "CVE-2020-28368", "XSA-351" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zrxf-3w1d-t3ba" } ], "risk_score": "3.5", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.11.4%252B107-gef32c7afa2-1" }